CVE-2026-7280

AVACAST developed by eMPIA Technology has a Unquoted Service Path vulnerability, allowing privileged local attackers to place a malicious executable file in a specific directory, resulting in arbitrary code execution with system privileges when the AVACAST service starts...

CVE-2024-34604

Improper access control in LedCoverService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background...

CVE-2024-34605

Improper access control in SamsungHealthService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background...

PT-2024-26022 · Samsung · Samsungnotesservice

Name of the Vulnerable Software and Affected Versions: SamsungNotesService versions prior to SMR Aug-2024 Release 1 Description: The issue is related to improper access control in SamsungNotesService, allowing local attackers to bypass restrictions on starting services from the background. This...

PT-2024-26019 · Unknown · Ledcoverservice

Name of the Vulnerable Software and Affected Versions: LedCoverService versions prior to SMR Aug-2024 Release 1 Description: The issue is related to improper access control in the LedCoverService, allowing local attackers to bypass restrictions on starting services from the background...

PT-2024-26020 · Samsung · Samsunghealthservice

Name of the Vulnerable Software and Affected Versions: SamsungHealthService versions prior to SMR Aug-2024 Release 1 Description: The issue is related to improper access control in SamsungHealthService, allowing local attackers to bypass restrictions on starting services from the background...

Error: "Error 1069: The service did not start due to a logon failure" on Provisioning Services

The Provisioning Services PVS service fails to start with the following error: "Windows could not start the Citrix PVS Stream Service server on ServerName. Error 1069: The service did not start due to a logon failure"...

ESET NOD32 Antivirus 17.0.16.0 - Unquoted Service Path

Exploit Title: ESET NOD32 Antivirus 17.0.16.0 - Unquoted Service Path Exploit Author: Milad Karimi Ex3ptionaL Exploit Date: 2024-04-01 Vendor : https://www.eset.com Version : 17.0.16.0 Tested on OS: Microsoft Windows 10 pro x64 C:\wmic service get name,displayname,pathname,startmode |findstr /i...

tang security update

14-2 - Fix service start up 14-1 - New upstream release - v14. Resolves: rhbz2182411 Resolves: CVE-2023-1672...

Failed to Start Norskale Infrastructure Service by Using gMSA Account Due to Error 1069

After changing logon account to gMSA, the Norskale Infrastructure Service can't start due to error 1069 "The service did not start due to a logon failure"...

CVE-2023-21099

In multiple methods of PackageInstallerSession.java, there is a possible way to start foreground services from the background due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

Input validation

Sewio’s Real-Time Location System RTLS Studio version 2.0.0 up to and including version 2.6.2 is vulnerable to improper input validation of user input to the servicestart, servicestop, and servicerestart modules of the software. This could allow an attacker to start, stop, or restart arbitrary...

Sewio Real-Time Location System (RTLS) Studio 输入验证错误漏洞

Sewio Real-Time Location System RTLS Studio is a real-time location system from Sewio, Inc. An input validation error vulnerability exists in Sewio Real-Time Location System RTLS Studio versions 2.0.0 through 2.6.2, which stems from susceptibility to incorrect input validation of user input to th...

CVE-2022-43722

A vulnerability has been identified in SICAM PAS/PQS All versions V7.0. Affected software does not properly secure a folder containing library files. This could allow an attacker to place a custom malicious DLL in this folder which is then run with SYSTEM rights when a service is started that...

Siemens SICAM PAS/PQS 代码问题漏洞

Siemens SICAM PAS/PQS is a software from Siemens with an operating system for energy automation and power quality. A security vulnerability exists in Siemens SICAM PAS/PQS versions prior to V7.0 that stems from a failure to properly protect the containing folder. An attacker can exploit the...

PT-2022-27016 · Unknown · Sicam Pas/Pqs

Name of the Vulnerable Software and Affected Versions: SICAM PAS/PQS versions prior to V7.0 Description: A vulnerability has been identified where the affected software does not properly secure a folder containing library files. This could allow an attacker to place a custom malicious DLL in this...

Metasploit Weekly Wrap-Up

Bofloader - Windows Meterpreter Gets Beacon Object File Loader Support This week brings a new and frequently requested feature to the Windows Meterpreter, the Beacon Object File loader. This new extension, bofloader, allows for users to execute Beacon Object Files as written for either Cobalt...

Asus GameSDK 1.0.0.4 Unquoted Service Path Vulnerability

Exploit Title: Asus GameSDK v1.0.0.4 - 'GameSDK.exe' Unquoted Service Path Privilege Escalation Exploit Author: Angelo Pio Amirante Version: 1.0.0.4 Tested on: Windows 10 Patched version: 1.0.5.0 CVE: CVE-2022-35899 Step to discover the unquoted service path: wmic service get...

Microsoft Exchange Mailbox Assistants 15.0.847.40 - Unquoted Service Path Vulnerability

Exploit Title: Microsoft Exchange Mailbox Assistants 15.0.847.40 - 'Service MSExchangeMailboxAssistants' Unquoted Service Path Exploit Author: Antonio Cuomo arkantolo Vendor : Microsoft Version : 15.0.847.40 Tested on OS: Microsoft Exchange Server 2013 SP1 PoC : ============== C:\sc qc...

Active WebCam 11.5 - Unquoted Service Path

Exploit Title: Active WebCam 11.5 - Unquoted Service Path Exploit Author: Salman Asad @deathflash1411 a.k.a LeoBreaker Date: 09.09.2021 Software Link: https://www.techspot.com/downloads/175-active-webcam.html Vendor Homepage: https://www.pysoft.com/ Version: 11.5 Tested on: Windows 10 Note: "Star...