CVE-2019-25275
Unknown Unknown - Not Provided
Unquoted Service Path in BartVPNService Enables Privilege Escalation

Publication date: 2026-02-05

Last updated on: 2026-02-05

Assigner: VulnCheck

Description
BartVPN 1.2.2 contains an unquoted service path vulnerability in the BartVPNService that allows local attackers to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path by placing malicious executables in specific file system locations to hijack the service's execution context.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-02-05
Last Modified
2026-02-05
Generated
2026-06-16
AI Q&A
2026-02-05
EPSS Evaluated
2026-06-14
NVD
CVE-2019-25275
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
bartvpn bartvpn 1.2.2
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-428 The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

[{'type': 'paragraph', 'content': "BartVPN version 1.2.2 contains an unquoted service path vulnerability in its Windows service named 'BartVPNService'. This vulnerability arises because the service's binary path is not enclosed in quotes and contains spaces, which allows local attackers to place malicious executables in specific file system locations. When the service starts, it may execute these malicious executables instead of the legitimate one, leading to arbitrary code execution with elevated system privileges."}, {'type': 'paragraph', 'content': 'The service runs under the LocalSystem account and is configured to auto-start, which means exploitation can lead to privilege escalation on the affected system.'}] [2, 3]

Impact Analysis

This vulnerability allows a local attacker with access to the affected system to execute arbitrary code with elevated system privileges. This means the attacker can gain control over the system at a high privilege level, potentially leading to unauthorized access, modification, or deletion of sensitive data, disruption of system availability, and compromise of system integrity.

Because the service runs with LocalSystem privileges, exploitation can result in full system compromise.

Compliance Impact

I don't know

Detection Guidance

This vulnerability can be detected by checking the service configuration for unquoted service paths, especially those containing spaces. An unquoted path can be exploited by placing malicious executables in certain locations.

A suggested command to detect this vulnerability on a Windows system is to query the service configuration using the command:

  • sc qc BartVPNService

This command will display the binary path of the BartVPNService. If the path is unquoted and contains spaces, the system is vulnerable to this unquoted service path issue.

Mitigation Strategies

I don't know

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2019-25275. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart