CVE-2025-41686 Information

Description

A low-privileged local attacker can exploit improper permissions on nssm.exe to escalate their privileges and gain administrative access.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Reference

https://certvde.com/de/advisories/VDE-2025-063

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

7.8

Related CNNVD

CNNVD-202508-1015 (Published: 2025-08-12)