← volver
CVE-2021-31776

CVE-2021-31776

EPSS 0.3%
Aviatrix VPN Client before 2.14.14 on Windows has an unquoted search path that enables local privilege escalation to the SYSTEM user, if the machine is misconfigured to allow unprivileged users to write to directories that are supposed to be restricted to administrators.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://docs.aviatrix.com/Downloads/samlclient.htmlhttps://docs.aviatrix.com/Downloads/samlclient.html#windows-winhttps://docs.aviatrix.com/HowTos/changelog.html#aviatrix-vpn-client-changelog