Primary

Context

MSP360 Free Backup Local Privilege Escalation Vulnerability

Vulnerability

A local privilege escalation vulnerability has been identified in MSP360 Free Backup. This issue allows attackers to escalate privileges on affected systems. Exploitation requires the ability to execute low-privileged code and user interaction from an administrator. The vulnerability arises in the restore functionality, where an attacker can create a junction to abuse the service, leading to the creation of arbitrary files. This exploitation can be used to escalate privileges and execute arbitrary code with SYSTEM rights.

Impact

Exploitation of this vulnerability allows for local privilege escalation, enabling an attacker to execute arbitrary code in the context of the SYSTEM user.

Remediation

Users can upgrade to MSP360 Free Backup version 8.1.4 to address this vulnerability.

Added: Dec 23, 2025, 10:53 PM

Updated: Dec 23, 2025, 10:53 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.0

remediation

7.7

relevance

1.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.0

remediation

7.7

relevance

1.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

MSP360 Free Backup Local Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating