Magic Mouse 2 Utilities 2.20 contains an unquoted service path vulnerability in its Windows service configuration. Attackers can exploit the unquoted path to in…

CVE-2020-36936 affects Magic Mouse 2 Utilities version 2.20 on Windows systems. The vulnerability stems from an unquoted service path in the Windows service configuration. Attackers can exploit this misconfiguration to inject malicious executables into the service path. Successful exploitation allows attackers to gain elevated system privileges. The vulnerability requires local access to place malicious files in the service path. This is a common Windows privilege escalation technique targeting improperly configured services.