CVE-2025-53841 PUBLISHED

Assigner: mitre
Reserved: 09.07.2025 Published: 03.12.2025 Updated: 03.12.2025

Akamai Guardicore Platform Agent before 52.1.1 allows an unprivileged user to fully elevate privileges to SYSTEM. This affects versions before 50.15.0, 51.12.0, and 52.1.1.

Metrics

CVSS 3.1

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVSS Score: 7.8

Attack Vector	Local	Scope	Unchanged
Attack Complexity	Low	Confidentiality Impact	High
Privileges Required	Low	Integrity Impact	High
User Interaction	None	Availability Impact	High

CVSS 3.1

Product Status

Vendor	Akamai
Product	Guardicore Platform Agent
Versions	Default: unaffected affected from 0 to 50.15.0 (excl.) affected from 51 to 51.12.0 (excl.) affected from 52 to 52.1.1 (excl.)

References

https://www.tuv.com/landingpage/en/vulnerability-disclosure/
https://techdocs.akamai.com/guardicore-platform-agent/changelog
https://community.akamai.com/customers/s/article/Windows-Agent-Vulnerability-Summary-and-Resolution

Problem Types

CWE-829 Inclusion of Functionality from Untrusted Control Sphere CWE