| |
Vulnerability CVE-2019-18245
Published: 2019-12-11 Modified: 2019-12-12
| Description: |
Reliable Controls LicenseManager versions 3.4 and prior may allow an authenticated user to insert malicious code into the system root path, which may allow execution of code with elevated privileges of the application. |
Type:
CWE-428 (Unquoted Search Path or Element)
CVSS2 => (AV:L/AC:L/Au:N/C:C/I:C/A:C)
| CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
7.2/10 |
10/10 |
3.9/10 |
| Exploit range |
Attack complexity |
Authentication |
Local |
Low |
No required |
| Confidentiality impact |
Integrity impact |
Availability impact |
Complete |
Complete |
Complete |
References: |
https://www.us-cert.gov/ics/advisories/icsa-19-337-01
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
