exploitDog

GHSA-p65q-qx69-3p34

Опубликовано: 25 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS4: 8.5

CVSS3: 7.8

Описание

HTC IPTInstaller 4.0.9 contains an unquoted service path vulnerability in the PassThru Service configuration. Attackers can exploit the unquoted binary path to inject and execute malicious code with elevated LocalSystem privileges.

HTC IPTInstaller 4.0.9 contains an unquoted service path vulnerability in the PassThru Service configuration. Attackers can exploit the unquoted binary path to inject and execute malicious code with elevated LocalSystem privileges.

Ссылки

EPSS

Процентиль: 2%

0.00013

Низкий

8.5 High

CVSS4

7.8 High

CVSS3

CVE ID

Дефекты

CWE-428

Связанные уязвимости

CVE-2020-36933

CVSS3: 7.8

nvd

13 дней назад

HTC IPTInstaller 4.0.9 contains an unquoted service path vulnerability in the PassThru Service configuration. Attackers can exploit the unquoted binary path to inject and execute malicious code with elevated LocalSystem privileges.

EPSS

Процентиль: 2%

0.00013

Низкий

8.5 High

CVSS4

7.8 High

CVSS3

CVE ID

Дефекты

CWE-428