PT-2026-5002 · Atheros · Coex Service Application
Isabel Lopez
·
Published
2026-01-27
·
Updated
2026-01-27
·
CVE-2020-36979
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Atheros Coex Service Application version 8.0.0.255
Description
The Windows service configuration contains an unquoted service path. This allows attackers to place malicious executables in the service path to gain elevated system privileges when the service starts.
Recommendations
Update Atheros Coex Service Application version 8.0.0.255 to a version that quotes the service path in the Windows registry.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Coex Service Application