PT-2026-5005 · Motorola Device Manager · Motorola Device Manager
Angel Canseco
·
Published
2026-01-27
·
Updated
2026-01-27
·
CVE-2020-36982
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Motorola Device Manager version 2.5.4
Description
The MotoHelperService.exe service contains an unquoted service path, which occurs when a service executable path contains spaces and is not enclosed in quotation marks. This allows local users to potentially inject malicious code and execute arbitrary code with elevated system privileges during service startup.
Recommendations
Update Motorola Device Manager to a version later than 2.5.4.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Motorola Device Manager