CVE-2025-12838
Local Privilege Escalation in MSP360 Free Backup Restore Function
Publication date: 2025-12-23
Last updated on: 2025-12-23
Assigner: Zero Day Initiative
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| msp360 | free_backup | 3.0 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-59 | The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in MSP360 Free Backup allows a local attacker who can execute low-privileged code and has administrator interaction to escalate their privileges. It exploits a flaw in the restore functionality where an attacker can create a junction to abuse the service into creating arbitrary files, enabling execution of arbitrary code with SYSTEM-level privileges.
How can this vulnerability impact me? :
The vulnerability can allow an attacker to escalate their privileges from a low-privileged user to SYSTEM level, potentially leading to full control over the affected system. This can result in unauthorized code execution, data compromise, and disruption of system operations.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, ensure that only trusted users have the ability to execute code on the system, especially with low privileges. Avoid running the MSP360 Free Backup restore functionality without proper administrative oversight. Monitor and restrict the creation of junctions or symbolic links that could be abused. Additionally, apply any available patches or updates from MSP360 once released and educate administrators to avoid interacting with suspicious restore operations.