Inforprograma · Jumpstart · CVE-2019-25305
**Name of the Vulnerable Software and Affected Versions**
JumpStart version 0.6.0.0
**Description**
The `jswpbapi` service runs with LocalSystem privileges and contains an unquoted service path. This allows attackers to exploit paths containing spaces to inject and execute malicious code with elevated system permissions.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.