CVE-2020-37129

High CVSS: 8.5

Memu Play 7.1.3 contains an insecure folder permissions vulnerability that allows low-privileged users to modify the MemuService.exe executable. Attackers can replace the service executable with a malicious file during system restart to gain SYSTEM-level privileges by exploiting unrestricted file modification permissions.

Vendor

Product

CWE

CWE-276

Yayın Tarihi

2026-02-05 17:16:07

Güncelleme

2026-02-05 20:47:37

Source Identifier

disclosure@vulncheck.com

KEV Date Added

Kategoriler

CWE-276 HIGH 2026

Referanslar

https://www.exploit-db.com/exploits/48283 https://www.memuplay.com/ https://www.vulncheck.com/advisories/memu-play-insecure-folder-permissions