Description
TFTP Broadband 4.3.0.1465 contains an unquoted service path vulnerability in the tftpt.exe service binary that allows local attackers to execute arbitrary code with system privileges. Attackers can place a malicious executable in the Program Files directory path that will be executed during service startup or system reboot with LocalSystem privileges.
Published: 2026-06-19
Score: 8.5 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An unquoted service path vulnerability exists in the tftpt.exe binary of TFTP Broadband version 4.3.0.1465, allowing local users to place a malicious executable in the Program Files directory path that will be executed with LocalSystem privileges during service startup or a system reboot. This flaw provides an attacker with the ability to execute arbitrary code at the highest level of privilege on the affected machine, effectively compromising the entire system.

Affected Systems

The affected product is Weird‑Solutions TFTP Broadband, specifically released under version 4.3.0.1465. No other products or versions are listed as impacted.

Risk and Exploitability

The CVSS score of 8.5 indicates a high severity attack. Because the vulnerability requires a local attacker with file system access, the risk is high for organizations running this unpatched software. The EPSS score is not available, and the vulnerability is not listed in the CISA KEV catalog, yet it still poses a significant threat to systems that have not applied vendor fixes.

Generated by OpenCVE AI on June 19, 2026 at 21:20 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Acquire and install the latest update from Weird‑Solutions that removes the unquoted service path and sets an absolute, quoted path for the tftpt.exe service.
  • If an update is not available, relocate the tftpt.exe installation directory to a path that does not contain spaces or use a quoted path in the Windows service configuration, and then delete any unqualified copies from Program Files that could be executed inadvertently.
  • Deploy host‑based intrusion detection or file‑integrity monitoring to detect the creation of malicious executables under Program Files, and configure application whitelisting to block execution of tftpt.exe with unexpected arguments or file locations.

Generated by OpenCVE AI on June 19, 2026 at 21:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 19 Jun 2026 18:15:00 +0000

Type Values Removed Values Added
Description TFTP Broadband 4.3.0.1465 contains an unquoted service path vulnerability in the tftpt.exe service binary that allows local attackers to execute arbitrary code with system privileges. Attackers can place a malicious executable in the Program Files directory path that will be executed during service startup or system reboot with LocalSystem privileges.
Title TFTP Broadband 4.3.0.1465 Unquoted Service Path Privilege Escalation
Weaknesses CWE-428
References
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 8.5, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-19T14:16:49.359Z

Reserved: 2026-06-19T13:57:45.988Z

Link: CVE-2020-37250

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-19T21:30:17Z

Weaknesses
  • CWE-428

    Unquoted Search Path or Element