top of page
perceptive_background_267k.jpg

SAntivirus IC 10.0.21.61 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute…

Published:

26 januari 2026 om 23:00:00

Alert date:

27 januari 2026 om 21:03:58

Source:

nvd.nist.gov

Click to open the original link from this advisory

Operating Systems, Security Tools

SAntivirus IC version 10.0.21.61 contains an unquoted service path vulnerability in its Windows service configuration. This vulnerability allows local attackers to potentially execute arbitrary code by exploiting the unquoted executable path. Attackers can inject malicious files in the service binary path, which enables privilege escalation to system-level permissions. The vulnerability affects the Windows service configuration and requires local access to exploit.

Technical details

Mitigation steps:

Affected products:

SAntivirus IC

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2020-36980
https://www.exploit-db.com/exploits/49042
https://www.segurazo.com/download.html
https://www.vulncheck.com/advisories/santivirus-ic-santivirusic-unquoted-service-path

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page