https://feed.craftedsignal.io/tags/cve-2019-25608/Trending threats, MITRE ATT&CK coverage, and detection metadata — refreshed continuously.Hugoenhello@craftedsignal.iohello@craftedsignal.ioMon, 23 Mar 2026 15:00:00 +0000https://feed.craftedsignal.io/briefs/2026-03-iperius-backup-privilege-escalation/Mon, 23 Mar 2026 15:00:00 +0000hello@craftedsignal.iohttps://feed.craftedsignal.io/briefs/2026-03-iperius-backup-privilege-escalation/Iperius Backup 6.1.0 is vulnerable to privilege escalation, allowing low-privilege users to execute arbitrary programs with elevated privileges by creating malicious backup jobs that execute pre- or post-backup scripts with SYSTEM privileges.<p>Iperius Backup 6.1.0 is susceptible to a privilege escalation vulnerability (CVE-2019-25608) that enables unprivileged users to gain elevated permissions on the system. This flaw allows attackers to create and configure backup jobs to execute arbitrary code, such as batch files or executable programs, with the privileges of the Iperius Backup Service account, which typically runs as Local System or Administrator. The vulnerability stems from insufficient checks on the scripts or programs…</p> criticaladvisoryprivilege escalationcve-2019-25608iperius backup