CVE-2023-53984

High CVSS: 8.5

Clevo HotKey Clipboard 2.1.0.6 contains an unquoted service path vulnerability in the HKClipSvc service that allows local non-privileged users to potentially execute code with system privileges. Attackers can exploit the misconfigured service path to inject and execute arbitrary code by placing malicious executables in specific file system locations.

Vendor

Product

CWE

CWE-428

Yayın Tarihi

2026-01-13 23:15:59

Güncelleme

2026-01-14 16:25:12

Source Identifier

disclosure@vulncheck.com

KEV Date Added

Kategoriler

CWE-428 HIGH 2026

Referanslar

https://web.archive.org/web/20200713203236/https://www.clevo.com.tw/index-en.asp https://www.exploit-db.com/exploits/51206 https://www.vulncheck.com/advisories/hotkey-clipboard-privilege-escalation-unquoted-service-path