CVE-2023-54353

Name of the Vulnerable Software and Affected Versions Chromacam version 4.0.3.0

Description An unquoted service path issue exists in the PsyFrameGrabberService. This allows local attackers with write access to C: or subdirectories such as C:Program Files (x86)Personify to execute arbitrary code. By placing a malicious Program.exe or PsyFrameGrabberService.exe file in these directories, the attacker can achieve code execution with LocalSystem privileges when the service starts automatically during boot.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.