CVE-2023-45883

EPSS 0.2%CWE-269

A privilege escalation vulnerability exists within the Qumu Multicast Extension v2 before 2.0.63 for Windows. When a standard user triggers a repair of the software, a pop-up window opens with SYSTEM privileges. Standard users may use this to gain arbitrary code execution as SYSTEM.

Produtos afetados

n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://hackandpwn.com/disclosures/CVE-2023-45883.pdf https://www.vidyo.com/enterprise-video-management/qumu