Unrated severityNVD Advisory· Published Jan 13, 2026· Updated Feb 2, 2026

Bluetooth Application 5.4.277 - 'BlueSoleilCS' Unquoted Service Path

CVE-2022-50928

Description

BlueSoleilCS 5.4.277 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted binary path in 'C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe' to inject malicious executables and escalate privileges.

Affected products

IVT Corporation/BlueSoleilCSllm-create
Range: =5.4.277
IVT Corp/Bluetooth Application BlueSoleilCSv5
Range: 5.4.277

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.exploit-db.com/exploits/50761mitreexploit
www.vulncheck.com/advisories/bluetooth-application-bluesoleilcs-unquoted-service-pathmitrethird-party-advisory
web.archive.org/web/20210624054150/http://ivtcorporation.com/mitreproduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000