← Back

CVE-2022-38176

nvd nist
Published: Sep 6, 2022Modified: Nov 21, 2024

JSON object

Loading...
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD

Description

An issue was discovered in YSoft SAFEQ 6 before 6.0.72. Incorrect privileges were configured as part of the installer package for the Client V3 services, allowing for local user privilege escalation by overwriting the executable file via an alternative data stream. NOTE: this is not the same as CVE-2021-31859.

Affected (41)

Products: Ysoft: Safeq
Ysoft
1 product
Safeq
Configuration A
41 vulnerable
Vulnerable SoftwareAffected Versions
Ysoft
Safeq
Version 6.0
Safeq
Version 6.0 build32
Safeq
Version 6.0 build33
Safeq
Version 6.0 build34
Safeq
Version 6.0 build35
Safeq
Version 6.0 build36
Safeq
Version 6.0 build37
Safeq
Version 6.0 build38
Safeq
Version 6.0 build39
Safeq
Version 6.0 build40
Safeq
Version 6.0 build41
Safeq
Version 6.0 build42
Safeq
Version 6.0 build43
Safeq
Version 6.0 build44
Safeq
Version 6.0 build45
Safeq
Version 6.0 build46
Safeq
Version 6.0 build47
Safeq
Version 6.0 build48
Safeq
Version 6.0 build49
Safeq
Version 6.0 build50
Safeq
Version 6.0 build51
Safeq
Version 6.0 build52
Safeq
Version 6.0 build53
Safeq
Version 6.0 build54
Safeq
Version 6.0 build55
Safeq
Version 6.0 build56
Safeq
Version 6.0 build57
Safeq
Version 6.0 build58
Safeq
Version 6.0 build59
Safeq
Version 6.0 build60
Safeq
Version 6.0 build61
Safeq
Version 6.0 build62
Safeq
Version 6.0 build63
Safeq
Version 6.0 build64
Safeq
Version 6.0 build65
Safeq
Version 6.0 build66
Safeq
Version 6.0 build67
Safeq
Version 6.0 build68
Safeq
Version 6.0 build69
Safeq
Version 6.0 build70
Safeq
Version 6.0 build71

References (4)

Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.