Primary

Context

BartVPN Unquoted Service Path Vulnerability in BartVPNService Allowing Elevated Privilege Code Execution

Vulnerability

A vulnerability exists in BartVPN version 1.2.2, specifically within the BartVPNService, due to an unquoted service path. This flaw enables local attackers to execute arbitrary code with elevated system privileges. Exploitation involves placing malicious executables in certain file system locations to take control of the service's execution context.

Impact

Exploitation of this vulnerability could lead to unauthorized code execution with elevated privileges on the system.

Reproduction

The vulnerability can be reproduced by first confirming the unquoted service path of the BartVPNService. Once verified, malicious executables can be placed in specific locations to exploit the unquoted path and execute arbitrary code with elevated privileges.

Added: Feb 5, 2026, 12:51 AM

Updated: Feb 5, 2026, 12:51 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.2

remediation

0.0

relevance

2.7

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.2

remediation

0.0

relevance

2.7

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

BartVPN Unquoted Service Path Vulnerability in BartVPNService Allowing Elevated Privilege Code Execution

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating