cve/2019/CVE-2019-13208.md

### [CVE-2019-13208](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13208)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

WavesSysSvc in Waves MAXX Audio allows privilege escalation because the General registry key has Full Control access for the Users group, leading to DLL side loading. This affects WavesSysSvc64.exe 1.9.29.0.

### POC

#### Reference
- https://versprite.com/blog/security-research/windows-registry/
- https://versprite.com/blog/security-research/windows-registry/

#### Github
No PoCs found on GitHub currently.