exploitDog

CVE-2022-50921

Опубликовано: 13 янв. 2026

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

WOW21 5.0.1.9 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path to inject malicious executables that will be launched with LocalSystem permissions during service startup.

Ссылки

https://web.archive.org/web/20220220170535/https://wow21.life/
Product
https://www.exploit-db.com/exploits/50818
Exploit
https://www.vulncheck.com/advisories/wow-service-wowservice-unquoted-service-path
Third Party Advisory
https://www.exploit-db.com/exploits/50818
Exploit

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:wow21:wow21:5.0.1.9:*:*:*:*:*:*:*

EPSS

Процентиль: 1%

0.00011

Низкий

7.8 High

CVSS3

Дефекты

CWE-428

Связанные уязвимости

GHSA-qvc6-q2wm-52r2

CVSS3: 8.4

github

25 дней назад

WOW21 5.0.1.9 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path to inject malicious executables that will be launched with LocalSystem permissions during service startup.

EPSS

Процентиль: 1%

0.00011

Низкий

7.8 High

CVSS3

Дефекты

CWE-428