AI description
CVE-2025-58074 describes a privilege escalation vulnerability found during the installation of Norton Secure VPN when acquired through the Microsoft Store. This flaw allows a user with low privileges to replace files during the installation process. The ability to replace files during installation could lead to the deletion of arbitrary files, which in turn may result in an elevation of privileges for the low-privilege user.
- Description
- A privilege escalation vulnerability exists during the installation of Norton Secure VPN via the Microsoft Store. A low-privilege user can replace files during the installation process, which may result in deletion of arbitrary files that can lead to elevation of privileges.
- Source
- talos-cna@cisco.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 8.8
- Impact score
- 6
- Exploitability score
- 2
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
- Severity
- HIGH
- talos-cna@cisco.com
- CWE-1386
- Hype score
- Not currently trending
🚨*CVE* CVE-2025-58074 A privilege escalation vulnerability exists during the installation of Norton Secure VPN via the Microsoft Store. A low-privilege user can replace files during the in… https://t.co/M5Fjv2yM63 ----- Traducción: CVE-2025-58074 Exi… https://t.co/utmtNg
@infoflowcloud
4 May 2026
105 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-58074 A privilege escalation vulnerability exists during the installation of Norton Secure VPN via the Microsoft Store. A low-privilege user can replace files during the in… https://t.co/qo38gwY1PY
@CVEnew
4 May 2026
156 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-58074 Privilege Escalation via File Replacement in Norton Secure VPN Microsoft Store Installation https://t.co/WidRNRqcsP
@VulmonFeeds
4 May 2026
78 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes