CVE-2020-36980

Name of the Vulnerable Software and Affected Versions SAntivirus IC version 10.0.21.61

Description An unquoted service path in the Windows service configuration allows local attackers to potentially execute arbitrary code. By exploiting the unquoted executable path, attackers can inject malicious files into the service binary path, enabling privilege escalation to system-level permissions.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.