Описание
CoolerMaster MasterPlus 1.8.5 contains an unquoted service path vulnerability in the MPService that allows local attackers to execute code with elevated system privileges. Attackers can drop a malicious executable in the service path and trigger code execution during service startup or system reboot.
EPSS
Процентиль: 1%
0.00012
Низкий
8.4 High
CVSS3
Дефекты
CWE-427
Связанные уязвимости
CVSS3: 8.4
github
25 дней назад
CoolerMaster MasterPlus 1.8.5 contains an unquoted service path vulnerability in the MPService that allows local attackers to execute code with elevated system privileges. Attackers can drop a malicious executable in the service path and trigger code execution during service startup or system reboot.
EPSS
Процентиль: 1%
0.00012
Низкий
8.4 High
CVSS3
Дефекты
CWE-427