CVE-2025-58074

Published: Mag 04, 2026 Last Modified: Mag 04, 2026

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 8,8

Source: [email protected]

Attack Vector: local

Attack Complexity: low

Privileges Required: low

User Interaction: none

Scope: changed

Confidentiality: high

Integrity: high

Availability: high

Description

AI Translation Available

A privilege escalation vulnerability exists during the installation of Norton Secure VPN via the Microsoft Store. A low-privilege user can replace files during the installation process, which may result in deletion of arbitrary files that can lead to elevation of privileges.

1386

Insecure Operation on Windows Junction / Mount Point

Incomplete

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Confidentiality Integrity Availability

Potential Impacts:

Read Files Or Directories Modify Files Or Directories

Applicable Platforms

All platforms may be affected

View CWE Details

https://talosintelligence.com/vulnerability_reports/TALOS-2…

https://talosintelligence.com/vulnerability_reports/TALOS-2025-2276

CVE-2025-58074

Description

Insecure Operation on Windows Junction / Mount Point

Common Consequences

Applicable Platforms

Iscriviti alla newsletter