https://blog.qife122.com/tags/cve-2025-49677/ Recent content in CVE-2025-49677 on 办公AI智能小助手 Hugo zh-cn qife Tue, 09 Sep 2025 08:47:01 +0800 https://blog.qife122.com/p/windows-11-22h2%E7%89%88brokering%E6%96%87%E4%BB%B6%E7%B3%BB%E7%BB%9F%E6%9D%83%E9%99%90%E6%8F%90%E5%8D%87%E6%BC%8F%E6%B4%9E%E5%88%A9%E7%94%A8cve-2025-49677/ Tue, 09 Sep 2025 08:47:01 +0800 https://blog.qife122.com/p/windows-11-22h2%E7%89%88brokering%E6%96%87%E4%BB%B6%E7%B3%BB%E7%BB%9F%E6%9D%83%E9%99%90%E6%8F%90%E5%8D%87%E6%BC%8F%E6%B4%9E%E5%88%A9%E7%94%A8cve-2025-49677/ <h1 id="microsoft-brokering-file-system-windows-11-version-22h2---权限提升-cve-2025-49677">Microsoft Brokering File System Windows 11 Version 22H2 - 权限提升 CVE-2025-49677</h1> <p>2025-07-16 | CVSS 7.0</p> <h2><a href="https://sploitus.com/exploit?id=EDB-ID:52360">https://sploitus.com/exploit?id=EDB-ID:52360</a></h2> <h1 id="标题-microsoft-brokering-file-system-windows-11-version-22h2---权限提升">标题: Microsoft Brokering File System Windows 11 Version 22H2 - 权限提升</h1> <h1 id="作者-nu11secur1ty">作者: nu11secur1ty</h1> <h1 id="日期-2025年07月09日">日期: 2025年07月09日</h1> <h1 id="厂商-microsoft">厂商: Microsoft</h1> <h1 id="软件">软件: <a href="https://www.microsoft.com/en-us/windows/windows-11?r=1">https://www.microsoft.com/en-us/windows/windows-11?r=1</a></h1> <h1 id="参考">参考: <a href="https://portswigger.net/web-security/access-control">https://portswigger.net/web-security/access-control</a></h1> <h1 id="cve-2025-49677">CVE-2025-49677</h1> <h2 id="描述">描述</h2> <p>此概念验证(PoC)演示了针对CVE-2025-49677的交互式SYSTEM shell利用。 它利用计划任务和以SYSTEM身份运行的循环批处理脚本 来执行任意命令 具有NT AUTHORITY\SYSTEM权限并交互式返回命令 输出。</p>