Medium severity6.7NVD Advisory· Published Jul 19, 2019· Updated Jun 17, 2026
CVE-2019-7590
CVE-2019-7590
Description
ExacqVision Server’s services 'exacqVisionServer', 'dvrdhcpserver' and 'mdnsresponder' have an unquoted service path. If an authenticated user is able to insert code in their system root path it potentially can be executed during the application startup. This could allow the authenticated user to elevate privileges on the system. This issue affects: Exacq Technologies, Inc. exacqVision Server 9.6; 9.8. This issue does not affect: Exacq Technologies, Inc. exacqVision Server version 9.4 and prior versions; 19.03. It is not known whether this issue affects: Exacq Technologies, Inc. exacqVision Server versions prior to 8.4.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: 9.6, 9.8
- Range: 9.6, 9.8
- Exacq Technologies, Inc./exacqVision Serverv5Range: 9.6
Patches
Vulnerability mechanics
References
6- gallery.technet.microsoft.com/scriptcenter/Windows-Unquoted-Service-190f0341nvdPatchThird Party Advisory
- packetstormsecurity.com/files/152128/exacqVision-9.8-Unquoted-Service-Path-Privilege-Escalation.htmlnvdExploitThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/109307nvdThird Party AdvisoryVDB Entry
- www.johnsoncontrols.com/cyber-solutions/security-advisoriesnvdMitigationVendor Advisory
- www.us-cert.gov/ics/advisories/icsa-19-199-01nvdThird Party AdvisoryUS Government Resource
- www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5515.phpnvdThird Party Advisory
News mentions
0No linked articles in our index yet.