CVE-2025-14494

Name of the Vulnerable Software and Affected Versions RealDefense SUPERAntiSpyware (affected versions not specified)

Description A local attacker can escalate privileges on installations of RealDefense SUPERAntiSpyware by exploiting an exposed dangerous function within the SAS Core Service. Successful exploitation allows an attacker to execute arbitrary code with SYSTEM-level privileges, but requires initial low-privileged code execution on the target system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.