Описание
An exploitable local privilege elevation vulnerability exists in the file system permissions of the Win-911 Enterprise V4.20.13 install directory via “WIN-911 Mobile Runtime” service. Depending on the vector chosen, an attacker can overwrite various executables which could lead to escalation of the privileges when executed.
Ссылки
- ExploitTechnical DescriptionThird Party Advisory
- ExploitTechnical DescriptionThird Party Advisory
- ExploitTechnical DescriptionThird Party Advisory
- ExploitTechnical DescriptionThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:win911:win-911:4.20.13:*:*:*:enterprise:*:*:*
EPSS
Процентиль: 17%
0.00055
Низкий
9.3 Critical
CVSS3
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-276
CWE-276
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
An exploitable local privilege elevation vulnerability exists in the file system permissions of the Win-911 Enterprise V4.20.13 install directory via “WIN-911 Mobile Runtime” service. Depending on the vector chosen, an attacker can overwrite various executables which could lead to escalation of the privileges when executed.
EPSS
Процентиль: 17%
0.00055
Низкий
9.3 Critical
CVSS3
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-276
CWE-276