VulDBCVELIST:CVE-2023-2417CVE-2023-2417 ks-soft Advanced Host Monitor rma_active.exe unquoted search path
4.3 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:P/I:P/A:P
5.3 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
0.001 Low
EPSS
Percentile
19.2%
A vulnerability was found in ks-soft Advanced Host Monitor up to 12.56 and classified as problematic. Affected by this issue is some unknown functionality of the file C:\Program Files (x86)\HostMonitor\RMA-Win\rma_active.exe. The manipulation leads to unquoted search path. It is possible to launch the attack on the local host. Upgrading to version 12.60 is able to address this issue. It is recommended to upgrade the affected component. VDB-227714 is the identifier assigned to this vulnerability.
CNA Affected
[
{
"vendor": "ks-soft",
"product": "Advanced Host Monitor",
"versions": [
{
"version": "12.0",
"status": "affected"
},
{
"version": "12.1",
"status": "affected"
},
{
"version": "12.2",
"status": "affected"
},
{
"version": "12.3",
"status": "affected"
},
{
"version": "12.4",
"status": "affected"
},
{
"version": "12.5",
"status": "affected"
},
{
"version": "12.6",
"status": "affected"
},
{
"version": "12.7",
"status": "affected"
},
{
"version": "12.8",
"status": "affected"
},
{
"version": "12.9",
"status": "affected"
},
{
"version": "12.10",
"status": "affected"
},
{
"version": "12.11",
"status": "affected"
},
{
"version": "12.12",
"status": "affected"
},
{
"version": "12.13",
"status": "affected"
},
{
"version": "12.14",
"status": "affected"
},
{
"version": "12.15",
"status": "affected"
},
{
"version": "12.16",
"status": "affected"
},
{
"version": "12.17",
"status": "affected"
},
{
"version": "12.18",
"status": "affected"
},
{
"version": "12.19",
"status": "affected"
},
{
"version": "12.20",
"status": "affected"
},
{
"version": "12.21",
"status": "affected"
},
{
"version": "12.22",
"status": "affected"
},
{
"version": "12.23",
"status": "affected"
},
{
"version": "12.24",
"status": "affected"
},
{
"version": "12.25",
"status": "affected"
},
{
"version": "12.26",
"status": "affected"
},
{
"version": "12.27",
"status": "affected"
},
{
"version": "12.28",
"status": "affected"
},
{
"version": "12.29",
"status": "affected"
},
{
"version": "12.30",
"status": "affected"
},
{
"version": "12.31",
"status": "affected"
},
{
"version": "12.32",
"status": "affected"
},
{
"version": "12.33",
"status": "affected"
},
{
"version": "12.34",
"status": "affected"
},
{
"version": "12.35",
"status": "affected"
},
{
"version": "12.36",
"status": "affected"
},
{
"version": "12.37",
"status": "affected"
},
{
"version": "12.38",
"status": "affected"
},
{
"version": "12.39",
"status": "affected"
},
{
"version": "12.40",
"status": "affected"
},
{
"version": "12.41",
"status": "affected"
},
{
"version": "12.42",
"status": "affected"
},
{
"version": "12.43",
"status": "affected"
},
{
"version": "12.44",
"status": "affected"
},
{
"version": "12.45",
"status": "affected"
},
{
"version": "12.46",
"status": "affected"
},
{
"version": "12.47",
"status": "affected"
},
{
"version": "12.48",
"status": "affected"
},
{
"version": "12.49",
"status": "affected"
},
{
"version": "12.50",
"status": "affected"
},
{
"version": "12.51",
"status": "affected"
},
{
"version": "12.52",
"status": "affected"
},
{
"version": "12.53",
"status": "affected"
},
{
"version": "12.54",
"status": "affected"
},
{
"version": "12.55",
"status": "affected"
},
{
"version": "12.56",
"status": "affected"
}
]
}
]Related
4.3 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:P/I:P/A:P
5.3 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
0.001 Low
EPSS
Percentile
19.2%