VYPR
Medium severityNVD Advisory· Published Nov 26, 2025· Updated Apr 15, 2026

CVE-2025-66265

CVE-2025-66265

Description

CMService.exe creates the C:\\usr directory and subdirectories with insecure permissions, granting write access to all authenticated users. This allows attackers to replace configuration files (such as snmp.conf) or hijack DLLs to escalate privileges.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.