Back to CVE List

CVE-2019-25293

HIGH SEVERITY

CVSS Score & Metrics

Base Score
7.8 / 10
Vector String
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Vulnerability Description

BlueStacks App Player 2.4.44.62.57 contains an unquoted service path vulnerability in the BstHdLogRotatorSvc service that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe to inject malicious executables and escalate privileges.

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-428
Source
NVD
Vendor
bluestacks
Product
Blue Stacks App Player

External References

Discussion (0)

Add Comment

No comments yet. Be the first!