AI description
CVE-2025-58074 describes a privilege escalation vulnerability found during the installation of Norton Secure VPN when acquired through the Microsoft Store. This flaw allows a user with low privileges to replace files during the installation process. The ability to replace files during installation could lead to the deletion of arbitrary files, which in turn may result in an elevation of privileges for the low-privilege user.
- Description
- A privilege escalation vulnerability exists during the installation of Norton Secure VPN via the Microsoft Store. A low-privilege user can replace files during the installation process, which may result in deletion of arbitrary files that can lead to elevation of privileges.
- Source
- security@nortonlifelock.com
- NVD status
- Awaiting Analysis
- CNA Tags
- unsupported-when-assigned
CVSS 3.1
- Type
- Secondary
- Base score
- 8.8
- Impact score
- 6
- Exploitability score
- 2
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
- Severity
- HIGH
- security@nortonlifelock.com
- CWE-1386
- Hype score
- Not currently trending
🚨 HIGH SEVERITY: CVE-2025-58074 (CVSS 8.8) Privilege escalation flaw in Norton Secure VPN Microsoft Store installation. Low-priv users can replace files during install, leading to arbitrary file deletion & privilege elevation. Patch immediately. #CVE #Vulnerability #Pat
@DFIR_Lab
24 May 2026
258 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨*CVE* CVE-2025-58074 A privilege escalation vulnerability exists during the installation of Norton Secure VPN via the Microsoft Store. A low-privilege user can replace files during the in… https://t.co/M5Fjv2yM63 ----- Traducción: CVE-2025-58074 Exi… https://t.co/utmtNg
@infoflowcloud
4 May 2026
105 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-58074 A privilege escalation vulnerability exists during the installation of Norton Secure VPN via the Microsoft Store. A low-privilege user can replace files during the in… https://t.co/qo38gwY1PY
@CVEnew
4 May 2026
156 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-58074 Privilege Escalation via File Replacement in Norton Secure VPN Microsoft Store Installation https://t.co/WidRNRqcsP
@VulmonFeeds
4 May 2026
78 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes