CVE-2023-2417

MEDIUM

ks-soft Advanced Host Monitor <12.56 - Unquoted Search Path

Title source: llm

Description

A vulnerability was found in ks-soft Advanced Host Monitor up to 12.56 and classified as problematic. Affected by this issue is some unknown functionality of the file C:\Program Files (x86)\HostMonitor\RMA-Win\rma_active.exe. The manipulation leads to unquoted search path. It is possible to launch the attack on the local host. Upgrading to version 12.60 is able to address this issue. It is recommended to upgrade the affected component. VDB-227714 is the identifier assigned to this vulnerability.

References (3)

[Permissions Required] https://vuldb.com/?id.227714

[Permissions Required] https://vuldb.com/?ctiid.227714

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/172105/Advanced-Host-Monitor-12.56-Unquoted-Service-Path.html

Scores

CVSS v3 5.3

EPSS 0.0004

EPSS Percentile 12.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-428

Status published

Products (1)

ks-soft/advanced_host_monitor < 12.56

Published Apr 29, 2023

Tracked Since Feb 18, 2026