Skip to main content

Microsoft CVE-2026-4606

| EUVDEUVD-2026-14346 CRITICAL
Execution with Unnecessary Privileges (CWE-250)
2026-03-23 GV
10.0
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
10.0 CRITICAL
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:I/V:C/RE:M/U:Green

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:I/V:C/RE:M/U:Green
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
N

Lifecycle Timeline

3
EUVD ID Assigned
Mar 23, 2026 - 01:30 euvd
EUVD-2026-14346
Analysis Generated
Mar 23, 2026 - 01:30 vuln.today
CVE Published
Mar 23, 2026 - 01:05 nvd
CRITICAL 10.0

DescriptionCVE.org

GV Edge Recording Manager (ERM) v2.3.1 improperly runs application components with SYSTEM-level privileges, allowing any local user to gain full control of the operating system.

During installation, ERM creates a Windows service that runs under the LocalSystem account.

When the ERM application is launched, related processes are spawned under SYSTEM privileges rather than the security context of the logged-in user.

Functions such as 'Import Data' open a Windows file dialog operating with SYSTEM permissions, enabling modification or deletion of protected system files and directories.

Any ERM function invoking Windows file open/save dialogs exposes the same risk.

This vulnerability allows local privilege escalation and may result in full system compromise.

AnalysisAI

GV Edge Recording Manager (ERM) v2.3.1 improperly executes application components with SYSTEM-level privileges, allowing any local user to escalate privileges and gain full control of the operating system. The vulnerability stems from the Windows service running under the LocalSystem account and spawning child processes with elevated privileges, particularly when file dialogs are invoked during operations like data import. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Local user launches ERM application
Delivery
Child processes spawn with SYSTEM privileges
Exploit
Access file dialog with SYSTEM permissions
Execution
Modify or delete protected system files
Impact
Achieve full OS control

Vulnerability AssessmentAI

Exploitation Local user access required on Windows system running GV Edge Recording Manager (ERM) v2.3.1. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment This vulnerability presents critical real-world risk despite the absence of a CVSS vector and EPSS score in the available data. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario A non-administrative local user with access to a Windows system running GV ERM v2.3.1 launches the application and invokes the 'Import Data' function, which triggers a file dialog running with SYSTEM privileges. The attacker navigates to a protected system directory (e.g., C:\Windows\System32) and modifies a critical system file such as a driver or configuration file, or deletes system components to cause a denial of service. …
Remediation Upgrade GV Edge Recording Manager to a patched version released by GeoVision that addresses the privilege escalation vulnerability; consult the vendor advisory at https://www.geovision.com.tw/cyber_security.php for the specific patched version number and deployment instructions. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Identify all affected systems and apply vendor patches immediately. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-4606 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy