CVE-2025-54100

Name of the Vulnerable Software and Affected Versions Microsoft Windows PowerShell versions prior to December 17, 2025

Description The issue is a command injection flaw in Windows PowerShell that allows an unauthorized attacker to execute code locally. The flaw stems from improper neutralization of special elements during command execution. The vulnerability primarily impacts enterprise or IT-managed environments that utilize PowerShell scripts for automation. The vulnerability allows remote attackers to execute arbitrary code and affect the system. Microsoft PowerShell 5.1 now issues a security confirmation prompt when running the Invoke-WebRequest command to mitigate the risk.

API Endpoints: /api/v1/login (example, not explicitly mentioned in the input)

Vulnerable Parameters or Variables: username, password (examples, not explicitly mentioned in the input)

Function Names: Invoke-WebRequest

Recommendations Versions prior to December 17, 2025: Install the latest security updates released by Microsoft. Versions prior to December 17, 2025: Consider temporarily disabling or restricting the use of the Invoke-WebRequest function until a patch is applied.