High severity7.8NVD Advisory· Published Apr 5, 2022· Updated Jun 17, 2026
CVE-2022-23909
CVE-2022-23909
Description
There is an unquoted service path in Sherpa Connector Service (SherpaConnectorService.exe) 2020.2.20328.2050. This might allow a local user to escalate privileges by creating a "C:\Program Files\Sherpa Software\Sherpa.exe" file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Sherpa Software/Sherpa Connector Servicedescription
- Range: 2020.2.20328.2050
Patches
Vulnerability mechanics
References
1- packetstormsecurity.com/files/166574/Sherpa-Connector-Service-2020.2.20328.2050-Unquoted-Service-Path.htmlnvdExploitThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.