PT-2026-36800 · Norton · Norton Secure Vpn

Kpc Of

Published

2026-05-04

Updated

2026-05-29

CVE-2025-58074

CVSS v3.1

8.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Norton Secure VPN (affected versions not specified)

Description A privilege escalation issue occurs during the installation of Norton Secure VPN via the Microsoft Store. A low-privilege user can replace files during the installation process, which may lead to the deletion of arbitrary files and subsequent elevation of privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

LPE

Insecure Operation on Windows Junction

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1386

Related Identifiers

CVE-2025-58074

Affected Products

Norton Secure Vpn

PT-2026-36800 · Norton · Norton Secure Vpn

CVE-2025-58074

Weakness Enumeration

Related Identifiers

Affected Products

References · 8