RSS   Vulnerabilities for 'Allegro'   RSS

2021-12-08
 
CVE-2021-43978

CWE-522
 

 
Allegro WIndows 3.3.4152.0, embeds software administrator database credentials into its binary files, which allows users to access and modify data using the same credentials.

 
 
CVE-2021-42110

NVD-CWE-noinfo
 

 
An issue was discovered in Allegro Windows (formerly Popsy Windows) before 3.3.4156.1. A standard user can escalate privileges to SYSTEM if the FTP module is installed, because of DLL hijacking.

 

 >>> Vendor: Allegro 2 Products
Rom pager
Allegro


Copyright 2022, cxsecurity.com

 

Back to Top