exploitDog

CVE-2022-31464

Опубликовано: 16 июн. 2022

Источник: nvd

CVSS3: 7.8

CVSS2: 7.2

EPSS Низкий

Описание

Insecure permissions configuration in Adaware Protect v1.2.439.4251 allows attackers to escalate privileges via changing the service binary path.

Ссылки

https://r0h1rr1m.medium.com/adaware-protect-local-privilege-escalation-through-insecure-service-permissions-44d0eeb6c933
Exploit
Third Party Advisory
https://www.adaware.com/
Product
https://r0h1rr1m.medium.com/adaware-protect-local-privilege-escalation-through-insecure-service-permissions-44d0eeb6c933
Exploit
Third Party Advisory
https://www.adaware.com/
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:adaware:protect:1.2.439.4251:*:*:*:*:*:*:*

EPSS

Процентиль: 8%

0.0003

Низкий

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

CWE-732

Связанные уязвимости

GHSA-9w9q-qwwr-2mvh

CVSS3: 7.8

github

больше 3 лет назад

Insecure permissions configuration in Adaware Protect v1.2.439.4251 allows attackers to escalate privileges via changing the service binary path.

EPSS

Процентиль: 8%

0.0003

Низкий

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

CWE-732