CVE-2019-25272

High CVSS: 8.5

TexasSoft CyberPlanet 6.4.131 contains an unquoted service path vulnerability in the CCSrvProxy service that allows local attackers to execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files (x86)\TenaxSoft\CyberPlanet\SrvProxy.exe' to inject malicious executables and gain elevated system privileges.

Vendor

Product

CWE

CWE-428

Yayın Tarihi

2026-02-05 00:15:51

Güncelleme

2026-02-05 14:57:20

Source Identifier

disclosure@vulncheck.com

KEV Date Added

Kategoriler

CWE-428 HIGH 2026

Referanslar

https://tenaxsoft.com/index.html https://www.exploit-db.com/exploits/47724 https://www.vulncheck.com/advisories/texassoft-cyberplanet-ccsrvproxy-unquoted-service-path