Vulnerability Database

314,433

Total vulnerabilities in the database

CVE-2024-58288

Genexus Protection Server 9.7.2.10 contains an unquoted service path vulnerability in the protsrvservice Windows service configuration. Attackers can exploit the unquoted binary path to execute arbitrary code with elevated LocalSystem privileges by placing malicious executables in specific file system locations.

Published: Dec 11, 2025
Updated: Dec 14, 2025
CVE: CVE-2024-58288
Exploit:

No technical information available.

CWEs:

CWE-428

Affected Software
References

No affected software listed.

https://www.exploit-db.com/exploits/52065
https://www.genexus.com/en/developers/downloadcenter?data=;;
https://www.genexus.com/es/
https://www.vulncheck.com/advisories/genexus-protection-server-unquoted-service-path-privilege-escalation

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo