CVE-2018-25359
HIGH NVDCVSS Score
8.4
Severity
HIGH
Source
NVD
Published
May 25, 2026
Description
Splinterware System Scheduler Pro 5.12 contains an insecure file permissions vulnerability that allows low-privilege users to escalate privileges by modifying service executable files. Attackers can rename the WService.exe file in the installation directory and replace it with a malicious executable that executes with LocalSystem privileges when the service is triggered.