CVE-2020-22809

HIGH

Windscribe <v1.83 Build 20 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-22809. PoCs published by MgThuraMoeMyint.

AI-analyzed exploit summary This exploit leverages an unquoted service path vulnerability in WindscribeService to escalate privileges by modifying the service's binary path to execute arbitrary commands (e.g., adding a user to the administrators group). The service runs as LocalSystem, allowing command execution with elevated privileges upon service restart.

Description

In Windscribe v1.83 Build 20, 'WindscribeService' has an Unquoted Service Path that facilitates privilege escalation.

Exploits (1)

exploitdb WORKING POC

by MgThuraMoeMyint · textlocalwindows

https://www.exploit-db.com/exploits/48306

View Code ZIP pw:eip

This exploit leverages an unquoted service path vulnerability in WindscribeService to escalate privileges by modifying the service's binary path to execute arbitrary commands (e.g., adding a user to the administrators group). The service runs as LocalSystem, allowing command execution with elevated privileges upon service restart.

Classification

Working Poc 90%

Attack Type

Lpe

Complexity

Trivial

Reliability

Reliable

Target: Windscribe v1.83 Build 20

Auth required

Prerequisites: Authenticated user access · WindscribeService installed and running

MITRE ATT&CK

T1543.003 - Windows Service T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

https://www.exploit-db.com/exploits/48306

Scores

CVSS v3 7.8

EPSS 0.0040

EPSS Percentile 31.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-428

Status published

Products (1)

windscribe/windscribe 1.83.20

Published May 10, 2021

Tracked Since Feb 18, 2026