ГлавнаяУязвимости → CVE-2020-36957
7.8высокая

CVE-2020-36957

Описание

PDF Complete 3.5.310.2002 contains an unquoted service path vulnerability in its pdfsvc.exe service configuration. Attackers can exploit the unquoted path to inject and execute malicious code with elevated LocalSystem privileges.

CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://pdf-complete.informer.com/3.5/https://www.exploit-db.com/exploits/49226https://www.vulncheck.com/advisories/pdf-complete-pdfsvcexe-unquoted-service-path