Vulnerability-Lookup

CNVD-2026-11766

Vulnerability from cnvd - Published: 2026-02-26

Title

Wondershare Driver Install Service代码问题漏洞

Description

Wondershare Driver Install Service是中国万兴科技（Wondershare）公司的一款辅助型后台服务程序。 Wondershare Driver Install Service存在代码问题漏洞，该漏洞源于未加引号的服务路径，攻击者可利用该漏洞导致权限提升。

Severity

中

Formal description

厂商尚未提供漏洞修复方案，请关注厂商主页更新： https://www.wondershare.com/

Reference

https://nvd.nist.gov/vuln/detail/CVE-2020-36977

Impacted products

Name
Wondershare Driver Install Service 10.7.1.321

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-36977",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2020-36977"
    }
  },
  "description": "Wondershare Driver Install Service\u662f\u4e2d\u56fd\u4e07\u5174\u79d1\u6280\uff08Wondershare\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u8f85\u52a9\u578b\u540e\u53f0\u670d\u52a1\u7a0b\u5e8f\u3002\n\nWondershare Driver Install Service\u5b58\u5728\u4ee3\u7801\u95ee\u9898\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u672a\u52a0\u5f15\u53f7\u7684\u670d\u52a1\u8def\u5f84\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u6743\u9650\u63d0\u5347\u3002",
  "formalWay": "\u5382\u5546\u5c1a\u672a\u63d0\u4f9b\u6f0f\u6d1e\u4fee\u590d\u65b9\u6848\uff0c\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\u66f4\u65b0\uff1a\r\nhttps://www.wondershare.com/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2026-11766",
  "openTime": "2026-02-26",
  "products": {
    "product": "Wondershare Driver Install Service 10.7.1.321"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2020-36977",
  "serverity": "\u4e2d",
  "submitTime": "2026-02-05",
  "title": "Wondershare Driver Install Service\u4ee3\u7801\u95ee\u9898\u6f0f\u6d1e"
}

CVE-2020-36977 (GCVE-0-2020-36977)

Vulnerability from cvelistv5 – Published: 2026-01-27 18:51 – Updated: 2026-01-29 16:48

Title

Wondershare Driver Install Service help 10.7.1.321 - 'ElevationService' Unquote Service Path

Summary

Wondershare Driver Install Service contains an unquoted service path vulnerability in the ElevationService executable that allows local attackers to potentially inject malicious code. Attackers can exploit the unquoted path to replace the service binary with a malicious executable, enabling privilege escalation to LocalSystem account.

Severity ?

8.5 (High)


                        
                          CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-428 - Unquoted Search Path or Element

Assigner

VulnCheck

References

URL

Tags

	https://www.exploit-db.com/exploits/49101	exploit
	https://www.wondershare.com/	product
	https://www.wondershare.com/drfone/	product
	https://www.vulncheck.com/advisories/wondershare-…	third-party-advisory

Impacted products

	Vendor	Product	Version
	Wondershare	Wondershare Driver Install Service help	Affected: 10.7.1.321

Credits

Luis Sandoval

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2020-36977",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-01-29T15:49:29.391540Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-01-29T16:48:59.066Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "exploit"
            ],
            "url": "https://www.exploit-db.com/exploits/49101"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Wondershare Driver Install Service help",
          "vendor": "Wondershare",
          "versions": [
            {
              "status": "affected",
              "version": "10.7.1.321"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Luis Sandoval"
        }
      ],
      "datePublic": "2020-11-24T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Wondershare Driver Install Service contains an unquoted service path vulnerability in the ElevationService executable that allows local attackers to potentially inject malicious code. Attackers can exploit the unquoted path to replace the service binary with a malicious executable, enabling privilege escalation to LocalSystem account."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "Automatable": "NOT_DEFINED",
            "Recovery": "NOT_DEFINED",
            "Safety": "NOT_DEFINED",
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "LOCAL",
            "baseScore": 8.5,
            "baseSeverity": "HIGH",
            "exploitMaturity": "NOT_DEFINED",
            "privilegesRequired": "LOW",
            "providerUrgency": "NOT_DEFINED",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "NONE",
            "valueDensity": "NOT_DEFINED",
            "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
            "version": "4.0",
            "vulnAvailabilityImpact": "HIGH",
            "vulnConfidentialityImpact": "HIGH",
            "vulnIntegrityImpact": "HIGH",
            "vulnerabilityResponseEffort": "NOT_DEFINED"
          },
          "format": "CVSS"
        },
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-428",
              "description": "Unquoted Search Path or Element",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-01-27T18:51:03.705Z",
        "orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10",
        "shortName": "VulnCheck"
      },
      "references": [
        {
          "name": "ExploitDB-49101",
          "tags": [
            "exploit"
          ],
          "url": "https://www.exploit-db.com/exploits/49101"
        },
        {
          "name": "Vendor Homepage",
          "tags": [
            "product"
          ],
          "url": "https://www.wondershare.com/"
        },
        {
          "name": "Software Product Page",
          "tags": [
            "product"
          ],
          "url": "https://www.wondershare.com/drfone/"
        },
        {
          "name": "VulnCheck Advisory: Wondershare Driver Install Service help 10.7.1.321 - \u0027ElevationService\u0027 Unquote Service Path",
          "tags": [
            "third-party-advisory"
          ],
          "url": "https://www.vulncheck.com/advisories/wondershare-driver-install-service-help-elevationservice-unquote-service-path"
        }
      ],
      "title": "Wondershare Driver Install Service help 10.7.1.321 - \u0027ElevationService\u0027 Unquote Service Path",
      "x_generator": {
        "engine": "vulncheck"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10",
    "assignerShortName": "VulnCheck",
    "cveId": "CVE-2020-36977",
    "datePublished": "2026-01-27T18:51:03.705Z",
    "dateReserved": "2026-01-27T15:47:07.999Z",
    "dateUpdated": "2026-01-29T16:48:59.066Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2026-11766

CVE-2020-36977 (GCVE-0-2020-36977)

Tags

Sightings

Nomenclature