Path or Symbolic Link Manipulation Vulnerability in Trellix SIR
CVE-2025-3771

7.2HIGH

Key Information:

Vendor

Trellix

Status
System Information Reporter
Vendor
CVE Published:
26 June 2025

What is CVE-2025-3771?

A vulnerability in Trellix SIR versions 1.0.3 and earlier enables authenticated non-admin local users to exploit path or symbolic link manipulation. By manipulating registry entries or creating junction symbolic links to target files, an attacker can overwrite critical system files with SIR backup files, potentially resulting in system instability and crashes.

Affected Version(s)

System Information Reporter Windows 1.0.3

References

https://thrive.trellix.com/s/article/000014635

CVSS V4

Score:
7.2
Severity:
HIGH
Confidentiality:
Low
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

NCIA researchers
.
CVE-2025-3771 : Path or Symbolic Link Manipulation Vulnerability in Trellix SIR