CVE-2025-0543

Name of the Vulnerable Software and Affected Versions: G DATA Security Client versions are not explicitly specified in the provided descriptions.

Description: The issue is related to incorrect assignment of privileges to directories in G DATA Security Client, allowing a local, unprivileged attacker to escalate privileges on affected installations. This is achieved by placing an arbitrary executable in a globally writable directory, which results in execution by the SetupSVC.exe service in the context of SYSTEM. No information is provided about the estimated number of potentially affected devices or real-world incidents.

Recommendations: No specific versions of G DATA Security Client are mentioned, thus no explicit recommendations can be provided based on the given input data.