TROYANOSYVIRUS
Zuruck zu CVEs

CVE-2016-20058

HIGH
7.8

Beschreibung

Netgate AMITI Antivirus build 23.0.305 contains an unquoted service path vulnerability in the AmitiAvSrv and AmitiAntivirusHealth services that allows local attackers to escalate privileges. Attackers can place a malicious executable in the unquoted service path and trigger service restart or system reboot to execute code with LocalSystem privileges.

CVE Details

CVSS v3.1 Bewertung7.8
SchweregradHIGH
CVSS VektorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AngriffsvektorLOCAL
KomplexitatLOW
Erforderliche PrivilegienLOW
BenutzerinteraktionNONE
Veroffentlicht4/4/2026
Zuletzt geandert4/4/2026
Quellenvd
Honeypot-Sichtungen0

Schwachen (CWE)

CWE-428

Referenzen

http://www.netgate.sk/(disclosure@vulncheck.com)
http://www.netgate.sk/download/download.php?id=11(disclosure@vulncheck.com)
https://www.exploit-db.com/exploits/40540(disclosure@vulncheck.com)
https://www.vulncheck.com/advisories/netgate-amiti-antivirus-build-unquoted-service-path-privilege-escalation(disclosure@vulncheck.com)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.