Описание
Waves MaxxAudio, as installed on Dell laptops, adds a "WavesSysSvc" Windows service with File Version 1.1.6.0. This service has a vulnerability known as Unquoted Service Path. This could potentially allow an authorized but non-privileged local user to execute arbitrary code with elevated privileges on the system.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:waves:maxxaudio:1.1.6.0:*:*:*:*:*:*:*
EPSS
Процентиль: 15%
0.00047
Низкий
7 High
CVSS3
6.9 Medium
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 7
github
больше 3 лет назад
Waves MaxxAudio, as installed on Dell laptops, adds a "WavesSysSvc" Windows service with File Version 1.1.6.0. This service has a vulnerability known as Unquoted Service Path. This could potentially allow an authorized but non-privileged local user to execute arbitrary code with elevated privileges on the system.
EPSS
Процентиль: 15%
0.00047
Низкий
7 High
CVSS3
6.9 Medium
CVSS2
Дефекты
NVD-CWE-noinfo