CVE-2025-66265 — CMService.exe creates the C:\\usr directory and subdirectories with insecure permissions, granting write access to all authenticated users. This allows attackers to replace configuration files (such a — CVE Database · The Intelligence Room