VYPR

Maxxaudio

by Waves

CVEs (2)

  • CVE-2019-13208HigJul 3, 2019
    risk 0.47cvss 7.3epss 0.00

    WavesSysSvc in Waves MAXX Audio allows privilege escalation because the General registry key has Full Control access for the Users group, leading to DLL side loading. This affects WavesSysSvc64.exe 1.9.29.0.

  • CVE-2017-6005HigJul 26, 2017
    risk 0.46cvss 7.0epss 0.00

    Waves MaxxAudio, as installed on Dell laptops, adds a "WavesSysSvc" Windows service with File Version 1.1.6.0. This service has a vulnerability known as Unquoted Service Path. This could potentially allow an authorized but non-privileged local user to execute arbitrary code with…