CWE-749 on 办公AI智能小助手 https://blog.qife122.com/tags/cwe-749/ Recent content in CWE-749 on 办公AI智能小助手 Hugo zh-cn qife Sun, 28 Dec 2025 12:24:31 +0800 CVE-2025-14494:RealDefense SUPERAntiSpyware 高危本地提权漏洞深度剖析 https://blog.qife122.com/p/cve-2025-14494realdefense-superantispyware-%E9%AB%98%E5%8D%B1%E6%9C%AC%E5%9C%B0%E6%8F%90%E6%9D%83%E6%BC%8F%E6%B4%9E%E6%B7%B1%E5%BA%A6%E5%89%96%E6%9E%90/ Sun, 28 Dec 2025 12:24:31 +0800 https://blog.qife122.com/p/cve-2025-14494realdefense-superantispyware-%E9%AB%98%E5%8D%B1%E6%9C%AC%E5%9C%B0%E6%8F%90%E6%9D%83%E6%BC%8F%E6%B4%9E%E6%B7%B1%E5%BA%A6%E5%89%96%E6%9E%90/ <h3 id="cve-2025-14494-cwe-749-realdefense-superantispyware-中暴露的危险方法或函数">CVE-2025-14494: CWE-749: RealDefense SUPERAntiSpyware 中暴露的危险方法或函数</h3> <p><strong>严重性:高</strong> <strong>类型:漏洞</strong> <strong>CVE:CVE-2025-14494</strong></p> <p>RealDefense SUPERAntiSpyware 暴露危险函数本地权限提升漏洞。该漏洞允许本地攻击者在受影响的 RealDefense SUPERAntiSpyware 安装上提升权限。攻击者必须首先获得在目标系统上执行低权限代码的能力才能利用此漏洞。</p>