← Volver a CVEs
CVE-2022-25031
HIGH7.8
Descripcion
Remote Desktop Commander Suite Agent before v4.8 contains an unquoted service path which allows attackers to escalate privileges to the system level.
Detalles CVE
Puntuacion CVSS v3.17.8
SeveridadHIGH
Vector CVSSCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vector de ataqueLOCAL
ComplejidadLOW
Privilegios requeridosLOW
Interaccion usuarioNONE
Publicado3/3/2022
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
rdpsoft:remote_desktop_commander_suite_agent
Debilidades (CWE)
CWE-428
Referencias
https://hansesecure.de/2022/02/vulnerability-in-remote-desktop-commander-suite-agent/?lang=en(cve@mitre.org)
https://www.rdpsoft.com/uqspvuln/(cve@mitre.org)
https://hansesecure.de/2022/02/vulnerability-in-remote-desktop-commander-suite-agent/?lang=en(af854a3a-2127-422b-91ae-364da2661108)
https://www.rdpsoft.com/uqspvuln/(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.