← back
CVE-2019-25269

Amiti Antivirus 25.0.640 - Unquoted Service Path Vulnerability

CVSS 8.5 HIGHEPSS 0.3%CWE-428
Amiti Antivirus 25.0.640 contains an unquoted service path vulnerability in its Windows service configurations. Attackers can exploit the unquoted path to inject and execute malicious code with elevated LocalSystem privileges by placing executable files in specific directory locations.
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected products
Netgate · Amiti Antivirus

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.exploit-db.com/exploits/47747https://www.vulncheck.com/advisories/amiti-antivirus-unquoted-service-path-vulnerabilityhttp://www.netgate.sk/