exploitDog

CVE-2019-25309

Опубликовано: 11 фев. 2026

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

Zilab Remote Console Server 3.2.9 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path in the service configuration to inject malicious executables that will be run with LocalSystem permissions.

Ссылки

http://html.tucows.com/preview/340137/Zilab-Remote-Console-Server?q=remote+support
https://www.exploit-db.com/exploits/47506
https://www.vulncheck.com/advisories/zilab-remote-console-server-zilab-remote-console-server-unquoted-service-path

EPSS

Процентиль: 5%

0.0015

Низкий

7.8 High

CVSS3

Дефекты

CWE-428

Связанные уязвимости

GHSA-fmj5-jwwm-6cm2

CVSS3: 7.8

github

4 месяца назад

Zilab Remote Console Server 3.2.9 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path in the service configuration to inject malicious executables that will be run with LocalSystem permissions.

EPSS

Процентиль: 5%

0.0015

Низкий

7.8 High

CVSS3

Дефекты

CWE-428