Local Privilege Escalation Vulnerability in VIPRE Advanced Security by VIPRE
CVE-2025-13703

7.8HIGH

Key Information:

Vendor: Vipre
Status: Advanced Security
Vendor: CVE Published:; 23 December 2025

What is CVE-2025-13703?

A vulnerability exists in VIPRE Advanced Security due to improper permission assignment within the product installer. This flaw enables local attackers, who can run low-privileged code on the target system, to escalate their privileges and execute arbitrary code with SYSTEM-level access. Attackers can exploit this weakness to compromise the integrity of the affected installations, potentially leading to further system exploitation and data breaches. Users are advised to apply patches and monitor their systems for any unauthorized activities.

Affected Version(s)

Advanced Security 12.0.2.220

References

https://www.zerodayinitiative.com/advisories/ZDI-25-1023/

x_research-advisory

https://success.vipre.com/home-windows-release-notes/home...

vendor-advisory

CVSS V3.0

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 23, 2025
Vulnerability Reserved
Nov 25, 2025

JSON

Vipre

What is CVE-2025-13703?

Affected Version(s)

References

CVSS V3.0

Timeline