← Back

CVE-2021-35052

nvd nist
Published: Nov 23, 2021Modified: Nov 21, 2024

JSON object

Loading...
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD

Description

A component in Kaspersky Password Manager could allow an attacker to elevate a process Integrity level from Medium to High.

Affected (19)

Kaspersky
1 product
Password Manager
Configuration A
19 vulnerable
Vulnerable SoftwareAffected Versions
Kaspersky
Password Manager
Up to 9.0.1
Password Manager
Version 9.0.2
Password Manager
Version 9.0.2 patch_a
Password Manager
Version 9.0.2 patch_b
Password Manager
Version 9.0.2 patch_c
Password Manager
Version 9.0.2 patch_d
Password Manager
Version 9.0.2 patch_e
Password Manager
Version 9.0.2 patch_f
Password Manager
Version 9.0.2 patch_g
Password Manager
Version 9.0.2 patch_h
Password Manager
Version 9.0.2 patch_i
Password Manager
Version 9.0.2 patch_j
Password Manager
Version 9.0.2 patch_k
Password Manager
Version 9.0.2 patch_l
Password Manager
Version 9.0.2 patch_m
Password Manager
Version 9.0.2 patch_n
Password Manager
Version 9.0.2 patch_o
Password Manager
Version 9.0.2 patch_p
Password Manager
Version 9.0.2 patch_q

Related CWEs

CWE-269
Improper Privilege Management
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

References (4)

Source: vulnerability@kaspersky.com
Vendor Advisory
Source: vulnerability@kaspersky.com
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry

Timeline

No history available yet.