CVE-2025-14490

Name of the Vulnerable Software and Affected Versions RealDefense SUPERAntiSpyware (affected versions not specified)

Description A local attacker can escalate privileges on affected systems running RealDefense SUPERAntiSpyware. The issue stems from an exposed dangerous function within the SAS Core Service, allowing an attacker to execute arbitrary code with SYSTEM-level privileges. Exploitation requires the attacker to first have the ability to execute low-privileged code on the target system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.