High severity8.4NVD Advisory· Published May 25, 2026· Updated May 26, 2026
CVE-2018-25359
CVE-2018-25359
Description
Splinterware System Scheduler Pro 5.12 contains an insecure file permissions vulnerability that allows low-privilege users to escalate privileges by modifying service executable files. Attackers can rename the WService.exe file in the installation directory and replace it with a malicious executable that executes with LocalSystem privileges when the service is triggered.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: =5.12
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.