Description
Fortitude HTTP 1.0.4.0 contains an unquoted service path vulnerability that allows local users to execute arbitrary code with elevated privileges by exploiting the service binary path. Attackers can insert malicious executables in the system root path that execute with SYSTEM privileges during service startup or system reboot.
Published: 2026-06-19
Score: 8.5 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The flaw arises from an unquoted service path defined for the Fortitude HTTP service. When the operating system loads the service during startup or a system reboot, a local user can place a malicious executable in a location that matches the unquoted path and has not been protected by quoting. That executable then runs with SYSTEM privileges, giving the attacker full control over the affected machine.

Affected Systems

Fortitude HTTP 1.0.4.0 is listed as affected. The CVE does not mention other released versions.

Risk and Exploitability

The CVSS score is 8.5, indicating a high impact for local privilege escalation. No EPSS score is available, so exploitation frequency cannot be estimated; the vulnerability is not in the CISA KEV catalog. Attackers must have local write access to the system root or the service startup directory, after which inserting a malicious binary is sufficient to obtain SYSTEM privileges.

Generated by OpenCVE AI on June 19, 2026 at 20:40 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Fortitude HTTP to the latest version that fixes the unquoted service path issue.
  • If an upgrade cannot be performed immediately, relocate the service binary to a path without spaces or modify the service configuration to quote the binary path, thereby preventing the OS from executing unintended files.
  • Remove any executable files from the system root or other directories that could match the unquoted service path and restrict write permissions on those paths to prevent local users from adding malicious binaries.
  • Limit local user accounts from having write access to the system root and the service’s startup directories to reduce the chance of malicious executables being placed there.

Generated by OpenCVE AI on June 19, 2026 at 20:40 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 22 Jun 2026 17:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Sun, 21 Jun 2026 09:45:00 +0000

Type Values Removed Values Added
First Time appeared Networkdls
Networkdls fortitude Http
Vendors & Products Networkdls
Networkdls fortitude Http

Fri, 19 Jun 2026 18:15:00 +0000

Type Values Removed Values Added
Description Fortitude HTTP 1.0.4.0 contains an unquoted service path vulnerability that allows local users to execute arbitrary code with elevated privileges by exploiting the service binary path. Attackers can insert malicious executables in the system root path that execute with SYSTEM privileges during service startup or system reboot.
Title Fortitude HTTP 1.0.4.0 Unquoted Service Path Elevation of Privilege
Weaknesses CWE-428
References
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 8.5, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}


Subscriptions

Networkdls Fortitude Http
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-22T16:39:43.842Z

Reserved: 2026-06-19T13:16:24.466Z

Link: CVE-2016-20087

cve-icon Vulnrichment

Updated: 2026-06-22T16:38:24.969Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-20T22:36:08Z

Weaknesses
  • CWE-428

    Unquoted Search Path or Element