CVE-2025-7973
CVE-2025-7973 is a high-severity vulnerability with a CVSS 4.0 base score of 8.5. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low. The underlying weakness is classified as CWE-268.
Key facts
- Severity: High (CVSS 4.0 base score 8.5)
- EPSS exploit prediction: 0% (3rd percentile)
- Actively exploited: Not listed in CISA KEV
- EU (EUVD) id: EUVD-2025-24817
- Weakness: CWE-268
- Published:
- Last modified:
Description
A security issue exists in FactoryTalk ViewPoint version 14.0 or below due to improper handling of MSI repair operations. During a repair, attackers can hijack the cscript.exe console window, which runs with SYSTEM privileges. This can be exploited to spawn an elevated command prompt, enabling full privilege escalation.
Frequently asked questions
- What is CVE-2025-7973?
- A security issue exists in FactoryTalk ViewPoint version 14.0 or below due to improper handling of MSI repair operations. During a repair, attackers can hijack the cscript.exe console window, which runs with SYSTEM privileges. This can be exploited to spawn an elevated command prompt, enabling full privilege escalation.
- How severe is CVE-2025-7973?
- CVE-2025-7973 has a CVSS 4.0 base score of 8.5, rated high severity.
- Is CVE-2025-7973 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 0% (3rd percentile), an estimate of the probability of exploitation in the next 30 days.
- How do I fix CVE-2025-7973?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its high severity, prioritise patching exposed systems.
- Does CVE-2025-7973 have an EU (EUVD) identifier?
- Yes. CVE-2025-7973 is tracked in the ENISA EU Vulnerability Database (EUVD) as EUVD-2025-24817.
- When was CVE-2025-7973 published?
- CVE-2025-7973 was published on 2025-08-14 and last updated on 2026-06-17.
References
Other CWE-268 vulnerabilities
- CVE-2024-4877 — High (CVSS 8.8): OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, lesser privileged process to create a named pipe…
- CVE-2023-0759 — High (CVSS 8.8): Privilege Chaining in GitHub repository cockpit-hq/cockpit prior to 2.3.8.
- CVE-2026-32325 — High (CVSS 7.8): Privilege chaining issue exists in ServerView Agents for Windows V11.60.04 and earlier. If this vulnerability is…
- CVE-2026-3888 — High (CVSS 7.8): Local privilege escalation in snapd on Linux allows local attackers to get root privilege by re-creating snap's private…
- CVE-2025-64701 — High (CVSS 7.8): QND Premium/Advance/Standard Ver.11.0.9i and prior contains a privilege escalation vulnerability, which may allow a…
- CVE-2025-2297 — High (CVSS 7.8): Prior to version 25.4.270.0, a local authenticated attacker can manipulate user profile files to add illegitimate…