CVE-2021-31776

Опубликовано: 29 апр. 2021

Источник: nvd

CVSS3: 7.8

CVSS2: 7.2

EPSS Низкий

Описание

Aviatrix VPN Client before 2.14.14 on Windows has an unquoted search path that enables local privilege escalation to the SYSTEM user, if the machine is misconfigured to allow unprivileged users to write to directories that are supposed to be restricted to administrators.

Ссылки

https://docs.aviatrix.com/Downloads/samlclient.html
Product
Vendor Advisory
https://docs.aviatrix.com/Downloads/samlclient.html#windows-win
Product
Vendor Advisory
https://docs.aviatrix.com/HowTos/changelog.html#aviatrix-vpn-client-changelog
Release Notes
Vendor Advisory
https://docs.aviatrix.com/Downloads/samlclient.html
Product
Vendor Advisory
https://docs.aviatrix.com/Downloads/samlclient.html#windows-win
Product
Vendor Advisory
https://docs.aviatrix.com/HowTos/changelog.html#aviatrix-vpn-client-changelog
Release Notes
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:aviatrix:vpn_client:*:*:*:*:*:*:*:*

Версия до 2.14.14 (исключая)

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

EPSS

Процентиль: 15%

0.00048

Низкий

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

CWE-428

Связанные уязвимости

GHSA-5m6v-4w72-r82q

github

больше 3 лет назад