Home / Vulnerability Intelligence / CVE-2025-63945

CVE-2025-63945 - Vulnerability Analysis

HighCVSS: 7.4

Last Updated: February 24, 2026

Tencent iOA - Privilege Escalation

Published: February 23, 2026Updated: February 24, 2026PoC Available

Overview

Tencent iOA app thru 210.9.28693.621001 on Windows contains a privilege escalation caused by a race condition, letting local users execute programs with elevated privileges, exploit requires successful race condition exploitation.

Severity & Score

Severity: High

CVSS Score: 7.4

Impact

Local users can execute programs with elevated privileges, potentially gaining full control over the system.

Mitigation

Update to the latest version beyond 210.9.28693.621001.

References

https://github.com/alexlee820/CVE-2025-63945-Tencent-iOA-EoP
https://github.com/alexlee820/Tencent-iOA-EoP

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2025-63945
Severity: High
CVSS Score: 7.4
Type: race_condition
Status: unconfirmed

CWE

CWE-59

CVSS Metrics

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H