# CVE-2025-60710

> Windows link following vulnerability (CWE-59) that enables local privilege escalation via symbolic link abuse. Added to CISA's Known Exploited Vulnerabilities catalog on 2026-04-13 as part of a batch of seven actively exploited flaws affecting Microsoft, Adobe, and Fortinet products.

- **CVSS:** 7.5 (HIGH)
- **EPSS:** 20.8%
- **CISA KEV:** yes
- **CWE:** CWE-59

Canonical: https://intel.threadlinqs.com/cve/CVE-2025-60710
Full threat coverage + IOCs via the Threadlinqs MCP server (Purple tier): https://intel.threadlinqs.com/mcp