Описание
There is an Unquoted Service Path in NI Service Locator (nisvcloc.exe) in versions prior to 18.0 on Windows. This may allow an authorized local user to insert arbitrary code into the unquoted service path and escalate privileges.
Уязвимые конфигурации
Конфигурация 1Версия до 18.0.0.49152 (исключая)
Одновременно
cpe:2.3:a:ni:ni_service_locator:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
EPSS
Процентиль: 16%
0.00051
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-428
Связанные уязвимости
github
больше 3 лет назад
There is an Unquoted Service Path in NI Service Locator (nisvcloc.exe) in versions prior to 18.0 on Windows. This may allow an authorized local user to insert arbitrary code into the unquoted service path and escalate privileges.
EPSS
Процентиль: 16%
0.00051
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-428