HIGH
pcvisit
CVE published 2026-04-22
CVE-2026-0539
A local privilege escalation vulnerability exists in the pcvisit service binary on Windows due to incorrect default permissions. The service binary is writable by low-privileged users and executes automatically with NT AUTHORITY SYSTEM privileges at boot, allowing an attacker to overwrite it with arbitrary code and gain elevated privileges. The vulnerability affects all versions after 22.6.22.1329 and was [truncated]