CVE-2024-58288 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Genexus Protection Server 9.7.2.10 contains an unquoted service path vulnerability in the protsrvservice Windows service configuration. Attackers can exploit th…
High CVSS: 8.7

CVE-2024-58288

Genexus Protection Server 9.7.2.10 contains an unquoted service path vulnerability in the protsrvservice Windows service configuration. Attackers can exploit the unquoted binary path to execute arbitrary code with elevated LocalSystem privileges by placing malicious executables in specific file system locations.
Vendor
-
Product
-
CWE
CWE-428
Yayın Tarihi
2025-12-11 22:15:49
Güncelleme
2025-12-12 15:17:31
Source Identifier
disclosure@vulncheck.com
KEV Date Added
-

Kategoriler

CWE-428 HIGH 2025

Referanslar

https://www.exploit-db.com/exploits/52065 https://www.genexus.com/en/developers/downloadcenter?data=;; https://www.genexus.com/es/ https://www.vulncheck.com/advisories/genexus-protection-server-unquoted-service-path-privilege-escalation