Vulnerability Type: Incorrect Default Permissions Product Affected: Radarr 5.28.0.10274 Description: - The Radarr service binary grants Modify or write permissions to the Built-In Users group. - Local non-privileged users can replace or modify the executable. - If the service runs under a high-privilege account (e.g., LocalSystem/SYSTEM), the modified binary may run with elevated privileges after service restart or system reboot. - This results in a local privilege escalation path from an ordinary user to the system. Source: https://github.com/lakshayverma/CVE-Discovery/blob/main/Radarr.md User: lakshay12311 (UID 91298) Submission Date: 10/28/2025 06:26 AM Moderation Date: 11/13/2025 04:28 PM Status: Accepted VulDB Entry: 33261 [Radarr 5.28.0.10274 Service Radarr.Console.exe default permission] Points: 19