CVE-2021-34546

Опубликовано: 10 июн. 2021

Источник: nvd

CVSS3: 6.8

CVSS2: 7.2

EPSS Низкий

Описание

An unauthenticated attacker with physical access to a computer with NetSetMan Pro before 5.0 installed, that has the pre-logon profile switch button within the Windows logon screen enabled, is able to drop to an administrative shell and execute arbitrary commands as SYSTEM via the "save log to file" feature. To accomplish this, the attacker can navigate to cmd.exe.

Ссылки

http://packetstormsecurity.com/files/163097/NetSetManPro-4.7.2-Privilege-Escalation.html
Exploit
Third Party Advisory
VDB Entry
http://seclists.org/fulldisclosure/2021/Jun/17
Exploit
Mailing List
Third Party Advisory
https://www.netsetman.com
Vendor Advisory
https://www.secuvera.de
Third Party Advisory
https://www.secuvera.de/advisories/secuvera-SA-2021-01.txt
Exploit
Third Party Advisory
http://packetstormsecurity.com/files/163097/NetSetManPro-4.7.2-Privilege-Escalation.html
Exploit
Third Party Advisory
VDB Entry
http://seclists.org/fulldisclosure/2021/Jun/17
Exploit
Mailing List
Third Party Advisory
https://www.netsetman.com
Vendor Advisory
https://www.secuvera.de
Third Party Advisory
https://www.secuvera.de/advisories/secuvera-SA-2021-01.txt
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:netsetman:netsetman:*:*:*:*:pro:*:*:*

Версия до 5.0 (исключая)

EPSS

Процентиль: 72%

0.00733

Низкий

6.8 Medium

CVSS3

7.2 High

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-7fm8-2jgx-v3jh

github

больше 3 лет назад