CVE-2017-20218

EUVD-2017-18930

16.03.2026, 14:17

Serviio PRO 1.8 contains an unquoted search path vulnerability in the Windows service that allows local users to execute arbitrary code with elevated privileges by placing malicious executables in the system root path. Additionally, improper directory permissions with full access for the Users group allow authenticated users to replace the executable file with arbitrary binaries, enabling privilege escalation during service startup or system reboot.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	7.8 HIGH	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
VulnCheck	CNA	7.8 HIGH	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Awaiting analysis

This vulnerability is currently awaiting analysis.

Base Score

CVSS 3.x

EPSS Score

Percentile: Unknown

Common Weakness Enumeration

CWE-428 - Unquoted Search Path or Element
The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path.

References

https://blogs.securiteam.com/index.php/archives/3094

https://cxsecurity.com/issue/WLB-2017050019

https://exchange.xforce.ibmcloud.com/vulnerabilities/125644

https://packetstormsecurity.com/files/142384

https://www.exploit-db.com/exploits/41959/

https://www.vulncheck.com/advisories/serviio-pro-local-privilege-escalation-via-unquoted-path

https://www.zeroscience.mk/en/vulnerabilities/ZSL-2017-5405.php