- Description
- A Privilege Escalation vulnerability has been found in Panloader component v3.24.0.0 by Espiral MS Group. This vulnerability allows any user to override the file panLoad.exe that will be executed by SYSTEM user via a programmed task. This would allow an attacker to obtain administrator permissions to perform whatever activities he/she wants, shuch as accessing sensitive information, executing code remotely, and even causing a denial of service (DoS).
- Source
- cve-coordination@incibe.es
- NVD status
- Awaiting Analysis
CVSS 4.0
- Type
- Secondary
- Base score
- 8.5
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- HIGH
- cve-coordination@incibe.es
- CWE-732
- Hype score
- Not currently trending
🚨 CVE-2025-40672 🔴 HIGH (8.5) 🏢 Grupo Espiral MS - ProactivaNet 🏗️ 3.24.0.0 🔗 https://t.co/vuLCSZsDEM #CyberCron #VulnAlert #InfoSec https://t.co/c4eyBXCpXP
@cybercronai
26 May 2025
23 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-40672 ProactivaNet v3.24.0.0 Local Privilege Escalation via Programmed Task Manipulation https://t.co/FZmunR33SN
@VulmonFeeds
26 May 2025
133 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-40672 A Privilege Escalation vulnerability has been found in ProactivaNet v3.24.0.0 from Grupo Espiral MS. This vulnerability allows any user to override the file panLoad.e… https://t.co/Bb2RLvrzdx
@CVEnew
26 May 2025
462 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-40672: HIGH] Critical Privilege Escalation flaw discovered in ProactivaNet v3.24.0.0 by Grupo Espiral MS allows unauthorized users to gain admin rights, access sensitive data, execute code, and con...#cve,CVE-2025-40672,#cybersecurity https://t.co/RwC1l1Yx0U https://t.c
@CveFindCom
26 May 2025
45 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes