Jens

Jens Beimel

1

Article
Last Month

100.0%

CVE-2026-57919: Privilege Escalation in Matrix42 Empirum Personal Backup via Insecure Named Pipe Permissions and Untrusted Search Path

Published June 26th, 2026 by Jens Beimel

Summary PBackupVSS.exe in Matrix42 Empirum creates a named pipe (\\\\.\\pipe\\PBackupVSS) with a DACL that grants GENERIC_READ and GENERIC_WRITE permissions to all authenticated users. A low-privileged local attacker can connect to this pipe and send crafted IPC messages to trigger execution of arbitrary commands with SYSTEM privileges via an untrus

778 Views 1 min
Load More