Local Privilege Escalation in pcvisit service client_CVE-2026-0539

{
    "lastseen": "",
    "description": "Incorrect Default Permissions in pcvisit service binary on Windows allows a low-privileged local attacker to escalate their privileges by overwriting the service binary with arbitrary contents. This service binary is automatically launched with NT\\SYSTEM privileges on boot. This issue affects all versions after 22.6.22.1329 and was fixed in 25.12.3.1745.",
    "published": "2026-04-22T13:02:01.750Z",
    "modified": "2026-04-22T14:09:01.708Z",
    "type": "cve",
    "title": "Local Privilege Escalation in pcvisit service client",
    "source": "NCSC.ch",
    "references": "https://www.pcvisit.de/kundenbereich/release-notes\nhttps://labs.infoguard.ch/advisories/cve-2026-0539_pcvisit_local-privilege-escalation/",
    "id": "CVE-2026-0539",
    "bulletinFamily": "",
    "cwe": [
        "CWE-276"
    ],
    "cvelist": null,
    "sourceData": "pcvisit pcvisit Remote Host Modul 22.6.22.1329",
    "sourceHref": "",
    "cvss": {
        "score": 8.5,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "pcvisit Remote Host Modul",
    "version": "22.6.22.1329",
    "vendor": "pcvisit",
    "ai_description": "Local Privilege Escalation vulnerability in pcvisit service client due to incorrect default permissions",
    "ai_severity": "High",
    "ai_vendor": "pcvisit",
    "ai_product": "pcvisit Remote Host Modul",
    "ai_version": "all versions after 22.6.22.1329",
    "ai_score": 8.5
}