CVE-2026-0539

Summary

Incorrect Default Permissions in pcvisit service binary on Windows allows a low-privileged local attacker to escalate their privileges by overwriting the service binary with arbitrary contents. This service binary is automatically launched with NT\SYSTEM privileges on boot. This issue affects all versions after 22.6.22.1329 and was fixed in 25.12.3.1745.

Affected Software

VendorProductVersion RangeStatus
pcvisitpcvisit Remote Host Modul22.6.22.1329 < 25.12.3.1745affected
pcvisitpcvisit Remote Host Modul0 < 22.6.22.1329unaffected
pcvisitpcvisit Remote Host Modul25.12.3.1745unaffected

Weaknesses

  • CWE-276: CWE-276 Incorrect Default Permissions

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References