HTC VIVEPORT Remote Code Execution Vulnerability


Privilege escalation in the “HTC Account Service” and “ViveportDesktopService” in HTC VIVEPORT before allows local attackers to escalate privileges to SYSTEM via reconfiguration of either service.


The information has been provided by Joshua Arnold

The original article can be found at:


HTC VIVEPORT  is prone to a remote code-execution vulnerability.This allows a remote attacker to exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts may result in a denial-of-service condition.

Vulnerable Systems:

  • HTC VIVEPORT before

CVE Information:


Disclosure Timeline:
Publish Date:06/03/2019

Categories: News