Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
KMSpico 17.1.0.0 - 'Service KMSELDI' Unquoted Service Path
Vulnerability Description
KMSpico 17.1.0.0 contains an unquoted service path vulnerability in the Service KMSELDI configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted binary path in C:\Program Files\KMSpico\Service_KMS.exe to inject malicious executables and escalate privileges.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
未经引用的搜索路径或元素
Vulnerability Title
KMSpico 代码问题漏洞
Vulnerability Description
KMSpico是KMSpico公司的一个Windows操作系统和Office软件破解工具。 KMSpico 17.1.0.0版本存在代码问题漏洞,该漏洞源于服务路径未加引号,可能导致执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A