CVE-2019-25293

High CVSS: 8.5

BlueStacks App Player 2.4.44.62.57 contains an unquoted service path vulnerability in the BstHdLogRotatorSvc service that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe to inject malicious executables and escalate privileges.

Vendor

Product

CWE

CWE-428

Yayın Tarihi

2026-02-06 17:16:10

Güncelleme

2026-02-06 21:57:22

Source Identifier

disclosure@vulncheck.com

KEV Date Added

Kategoriler

CWE-428 HIGH 2026

Referanslar

https://www.exploit-db.com/exploits/47582 https://www.vulncheck.com/advisories/blue-stacks-app-player-bsthdlogrotatorsvc-unquote-service-path https:/www.bluestacks.com