CNNVD-202510-3941 Information

CNNVD ID

CNNVD-202510-3941

Related CVE

CVE-2025-60320

• CNNVD Published: 2025-10-29

Description (Chinese)

memoQ是匈牙利memoQ公司的一个计算机辅助翻译软件。 memoQ 10.1.13.ef1b2b52aae及之前版本存在安全漏洞，该漏洞源于未加引号的服务路径，可能导致本地用户通过放置恶意可执行文件实现权限提升至SYSTEM。

Description (English)

MemoQ is a computer-assisted translation software for the Hungarian company MemoQ. There is a security loophole in memoQ 10.1.13.ef1b2b52ae and earlier versions, which stems from unquoted service paths that may lead local users to upgrade their rights to SYSTEM by placing malicious enforceable documents.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

memoQ

Published

2025-10-29

Last Modified

2026-02-24

References

https://docs.memoq.com/helpcenter/ https://github.com/joseraeiro/security-advisories/blob/e0b1095de8b3162fb0d9de9a688317a12fdd9be8/CVE-2025-60320.md https://access.redhat.com/security/cve/cve-2025-60320

Patch

https://www.memoq.com/downloads/