Primary

Context

K7 Ultimate Security Local Privilege Escalation Vulnerability

Vulnerability

Patched

A local privilege escalation vulnerability has been identified in K7 Ultimate Security version 17.0.2045. This vulnerability allows an unprivileged user to gain elevated privileges by exploiting insecure access to a named pipe, which enables the user to modify any registry key. The result is a full system compromise with SYSTEM privileges.

Impact

Exploitation of this vulnerability allows for local privilege escalation, enabling an unprivileged user to gain SYSTEM-level access.

Remediation

Users are advised to update to K7 Ultimate Security version 17.0.2057 or higher, which includes the patched K7Sentry.sys version 22.0.0.74 or above.

Added: Dec 22, 2025, 3:18 PM

Updated: Dec 22, 2025, 5:31 PM

Vulnerability Rating

Custom Algorithm

spread

5.4

impact

10.0

exploitability

4.7

remediation

7.7

relevance

1.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.4

impact

10.0

exploitability

4.7

remediation

7.7

relevance

1.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

K7 Ultimate Security Local Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

K7 Ultimate Security

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating