Primary

Context

Microvirt MEMU Play Unquoted Service Path Vulnerability in MEmusvc Windows Service

Vulnerability

A vulnerability exists in Microvirt MEMU Play version 3.7.0, specifically within the MEmusvc Windows service. This vulnerability is an unquoted service path issue that allows local attackers to execute arbitrary code. Exploitation involves injecting malicious executables into the unquoted binary path, which are then executed with elevated LocalSystem privileges.

Impact

Exploitation of this vulnerability could lead to arbitrary code execution with LocalSystem privileges.

Reproduction

The vulnerability can be reproduced by injecting a malicious executable into the unquoted service path of the MEmusvc Windows service. Once the executable is injected, it will be executed with elevated LocalSystem privileges, allowing for potential exploitation of the vulnerability.

Added: Jan 25, 2026, 2:19 PM

Updated: Jan 25, 2026, 2:19 PM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

10.0

exploitability

4.2

remediation

0.0

relevance

2.4

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

10.0

exploitability

4.2

remediation

0.0

relevance

2.4

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microvirt MEMU Play Unquoted Service Path Vulnerability in MEmusvc Windows Service

Vulnerability

Impact

Reproduction

Affected Products

Microvirt MEmu Play

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating