CVE-2016-20061

sheed AntiVirus 2.3 Unquoted Service Path Privilege Escalation

CVSS 8.5 HIGHEPSS 0.1%CWE-428

Vexday Risk Score

41Attention

SSVC decision (CISA)

Attend

PoC available → attend closely

CVSS 8.5EPSS 0.1%KEV nãoPoC públicaNuclei —Metasploit —Patch —

Lifecycle

04 Apr 2026Published on NVD

Recommendation: Plan a near-term fix — a public PoC already exists.

sheed AntiVirus 2.3 contains an unquoted service path vulnerability in the ShavProt service that allows local attackers to escalate privileges by exploiting the service binary path. Attackers can insert a malicious executable in the unquoted path and trigger service restart or system reboot to execute code with LocalSystem privileges.

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected products

Sheedantivirus · sheed AntiVirus

public PoCs found — 1

cve_referencewww.exploit-db.com/exploits/40497unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://dl.sheedantivirus.ir/setup.exe http://sheedantivirus.ir/https://www.exploit-db.com/exploits/40497 https://www.vulncheck.com/advisories/sheed-antivirus-unquoted-service-path-privilege-escalation