CVE-2023-53965

Name of the Vulnerable Software and Affected Versions SOUND4 Server Service version 4.1.102

Description SOUND4 Server Service version 4.1.102 contains an unquoted service path issue that may allow local users with limited privileges to execute code with higher system privileges. An attacker can exploit the unquoted binary path by placing malicious code in the system root path, which could then execute with LocalSystem privileges when the service starts.

Recommendations Versions prior to 4.1.102 are not affected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.