Disk Sorter Server 13.6.12 contains an unquoted service path vulnerability in its binary path configuration that allows local attackers to potentially execute a…

Disk Sorter Server version 13.6.12 contains an unquoted service path vulnerability in its binary path configuration. The vulnerability affects the path 'C:\Program Files\Disk Sorter Server\bin\disksrs.exe' and allows local attackers to potentially execute arbitrary code. Attackers can exploit this unquoted path to inject malicious executables and escalate privileges on the affected system. This is a local privilege escalation vulnerability that requires existing access to the target machine. The vulnerability allows for code execution through path manipulation techniques common in Windows environments.