216.73.217.176

CVE-2020-36928

· Published 16/01/2026 00:16 · Modified 16/01/2026 17:15

Labels: CVE-2020-36928 2026-01-16CVE-2020-36928CWE-428[email protected]

Essential information

Published
16/01/2026 00:16
Modified
16/01/2026 17:15
Author
Creator
CVSS
8.5 HIGH (v3) 8.5 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Brother BRAgent 1.38 contains an unquoted service path vulnerability in the WBA_Agent_Client service running with LocalSystem privileges. Attackers can exploit the unquoted path in C:\Program Files (x86)\Brother\BRAgent\ to inject and execute malicious code with elevated system permissions.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
brother / bagent cpe:2.3:a:brother:bagent:1.38:*:*:*:*:*:*:*

References