Vulnerabilities

CVE-2025-57392

by Fred · 10/09/2025

BenimPOS Masaustu 3.0.x is affected by insecure file permissions. The application installation directory grants Everyone and BUILTINUsers groups FILE_ALL_ACCESS, allowing local users to replace or modify .exe and .dll files. This may lead to privilege escalation or arbitrary code execution upon launch by another user or elevated context.

More information : https://github.com/meisterlos/BenimPOS-POC

Similar

Tags: Cybersecurity Alert