3 matches found
CVE-2025-8070
creationtimestamp| type| source ---|---|--- 2025-07-24 10:16:06+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lupcig5lkm2s...
CVE-2025-8070 Windows service registered with an unquoted ImagePath vulnerability in the system registry
The Windows service configuration of ABP and AES contains an unquoted ImagePath registry value vulnerability. This allows a local attacker to execute arbitrary code by placing a malicious executable in a predictable location such as C:\Program.exe. If the service runs with elevated privileges,...
CVE-2025-8070
The CVE-2025-8070 issue affects ABP (≤ 2.0.7.6130) and AES (≤ 1.0.6.6133). It is caused by an unquoted ImagePath registry value in the Windows service configuration, enabling a local attacker to place a malicious executable in a path with spaces (e.g., C:\Program.exe) and execute it. If the servi...