Syncbackfree

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2025-5474 HIGH This Week

Local privilege escalation vulnerability in 2BrightSparks SyncBackFree that allows low-privileged attackers to escalate to SYSTEM-level privileges by abusing the Mirror functionality through malicious junction creation. The vulnerability requires local code execution capability and administrator interaction, enabling arbitrary file deletion and code execution with SYSTEM privileges. This is a moderately severe local privilege escalation with a CVSS score of 7.3.

RCE Privilege Escalation Syncbackfree

NVD

CVSS 3.0

7.3

EPSS

0.0%

CVE-2025-5474

EPSS 0% CVSS 7.3

HIGH This Week

Local privilege escalation vulnerability in 2BrightSparks SyncBackFree that allows low-privileged attackers to escalate to SYSTEM-level privileges by abusing the Mirror functionality through malicious junction creation. The vulnerability requires local code execution capability and administrator interaction, enabling arbitrary file deletion and code execution with SYSTEM privileges. This is a moderately severe local privilege escalation with a CVSS score of 7.3.

RCE Privilege Escalation Syncbackfree

NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy