BaseFortifyCVE-2026-4606 (CRITICAL 10.0)
GV Edge ERM runs with SYSTEM privileges, allowing any local user to gain full OS control.
🔎 Full analysis:
https://basefortify.eu/cve_reports/2026/03/cve-2026-4606.html
Technical details:
• CWE-250: Execution with excessive privileges
• SYSTEM-level processes spawned incorrectly
• File dialogs run as SYSTEM
• Modify/delete protected files
Impact: Full system compromise from local access
Mitigation:
• Restrict local user access
• Monitor SYSTEM-level process behavior
• Apply vendor updates when available
• Limit use of affected ERM version
BaseFortify helps detect & prioritize such risks:
https://basefortify.eu/
