Back to CVE List

CVE-2020-37055

HIGH SEVERITY

CVSS Score & Metrics

Base Score
7.8 / 10
Vector String
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Vulnerability Description

SpyHunter 4 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted service path by placing malicious executables in specific file system locations to gain elevated access during service startup.

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-428
Source
NVD
Vendor
Enigmasoftware
Product
SpyHunter

External References

Discussion (0)

Add Comment

No comments yet. Be the first!