CVE-2019-25269 PUBLISHED

Amiti Antivirus 25.0.640 - Unquoted Service Path Vulnerability

Assigner: VulnCheck
Reserved: 06.01.2026 Published: 04.02.2026 Updated: 04.02.2026

Amiti Antivirus 25.0.640 contains an unquoted service path vulnerability in its Windows service configurations. Attackers can exploit the unquoted path to inject and execute malicious code with elevated LocalSystem privileges by placing executable files in specific directory locations.

Metrics

CVSS Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
CVSS Score: 8.5

Product Status

Vendor Netgate
Product Amiti Antivirus
Versions
  • Version 25.0.640 is affected

Credits

  • ZwX finder

References

Problem Types

  • Unquoted Search Path or Element CWE