CVE-2019-25292

Alps HID Monitor Service 8.1.0.10 - 'ApHidMonitorService' Unquote Service Path

CVSS 8.5 HIGHEPSS 0.2%CWE-428

Vexday Risk Score

21Baixo

Decisão SSVC (CISA)

Track

Sem sinal de exploração → monitorar

CVSS 8.5EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

06 fev 2026Publicada no NVD

Recomendação: Monitorar — sem sinal de exploração no momento.

Alps HID Monitor Service 8.1.0.10 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files\Apoint2K\HidMonitorSvc.exe to inject malicious executables and gain system-level access.

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Produtos afetados

Alps · Alps HID Monitor Service

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://www.alps.com/e/https://www.exploit-db.com/exploits/47605 https://www.vulncheck.com/advisories/alps-hid-monitor-service-aphidmonitorservice-unquote-service-path