Medium severity4.4NVD Advisory· Published Jul 3, 2023· Updated Jun 17, 2026
CVE-2023-3438
CVE-2023-3438
Description
An unquoted Windows search path vulnerability existed in the install the MOVE 4.10.x and earlier Windows install service (mvagtsce.exe). The misconfiguration allowed an unauthorized local user to insert arbitrary code into the unquoted service path to obtain privilege escalation and stop antimalware services.
Affected products
2Patches
Vulnerability mechanics
References
1- kcm.trellix.com/corporate/indexnvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.