CVE-2022-50928
Unquoted Service Path Vulnerability in BlueSoleilCS Enables Code Execution
Publication date: 2026-01-13
Last updated on: 2026-02-02
Assigner: VulnCheck
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ivt_corporation | bluesoleilcs | 5.4.277 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-428 | The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an unquoted service path issue in the Windows service configuration of BlueSoleilCS version 5.4.277. The executable path for the service is not enclosed in quotes, which allows local attackers to place malicious executables in certain locations that Windows might mistakenly execute instead of the intended service binary. This can lead to arbitrary code execution and privilege escalation on the affected system. [2, 3]
How can this vulnerability impact me? :
Exploiting this vulnerability allows a local attacker with limited privileges to execute arbitrary code with elevated privileges by injecting malicious executables due to the unquoted service path. This can lead to privilege escalation, compromising the confidentiality, integrity, and availability of the affected system. [2, 3]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
You can detect this vulnerability by checking the Windows service configuration for unquoted service paths, specifically for the BlueSoleilCS service. On a Windows system, use the command: sc qc BlueSoleilCS. This command will display the binary path of the service. If the path is unquoted and contains spaces (e.g., C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe without quotes), the system is vulnerable. Additionally, you can use PowerShell to query service paths and check for unquoted paths. For example: Get-WmiObject win32_service | Where-Object { $_.PathName -match 'BlueSoleilCS' } | Select-Object Name, PathName. Look for unquoted paths in the output. [2, 3]
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability immediately, you should quote the service binary path in the Windows service configuration to prevent the system from misinterpreting spaces in the path. Specifically, update the BlueSoleilCS service path to be enclosed in double quotes, for example: "C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe". Alternatively, you can move the executable to a path without spaces or rename folders to remove spaces. Also, ensure that only trusted users have local access to the system to reduce the risk of exploitation. Restart the service after making changes to apply the fix. [2, 3]