Description

A vulnerability exists in Quick Heal Total Security 23.0.0 in the quarantine management component where insufficient validation of restore paths and improper permission handling allow a low-privileged local user to restore quarantined files into protected system directories. This behavior can be abused by a local attacker to place files in high-privilege locations, potentially leading to privilege escalation.

INFO

Published Date :

2026-02-03T00:00:00.000Z

Last Modified :

2026-02-04T18:58:31.962Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2025-69875 vulnerability.

Vendors Products
Quickheal
  • Total Security
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-69875.

URL Resource
https://github.com/mertdas/QuickHealTotalSecurityPOC cve-icon cve-icon
https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-59439/ cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact