CNNVD-202601-3976 Information
Jan 23, 2026
cve
CNNVD ID
CNNVD-202601-3976
Related CVE
- CNNVD Published: 2026-01-23
Description (Chinese)
Softros LogonExpert是美国Softros公司的一个安全自动登录管理工具。 Softros LogonExpert 8.1版本存在代码问题漏洞,该漏洞源于服务路径未加引号,可能导致执行任意代码。
Description (English)
Softros LogonExpert is a secure automated login management tool for Softros in the United States. Softros LogonExpert 8.1 has a code gap, which stems from the absence of quotation marks on service paths, which may lead to the implementation of any code.
Hazard Level
Medium
Vulnerability Type
代码问题
Affected Vendor
Softros
Published
2026-01-23
Last Modified
2026-02-24
References
https://download.logonexpert.com/LogonExpertSetup64.msi https://www.exploit-db.com/exploits/49586 https://www.softros.com/ https://www.vulncheck.com/advisories/logonexpert-logonexpertsvc-unquoted-service-path
Patch
https://www.logonexpert.com/download/
Share on: