Ionos

ionos

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

1&1 Online Storage

1&1_online_storage

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-9486 3Ionos StratoTelekom 31&1 Online Storage Hidrive Desktop ClientMagentacloud Nov 21, 2024 Apr 30, 2019 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 STRATO HiDrive Desktop Client 5.0.1.0 for Windows suffers from a SYSTEM privilege escalation vulnerability through the HiDriveMaintenanceService service. This service establishes a NetNamedPipe endpoint that allows appli...Show more STRATO HiDrive Desktop Client 5.0.1.0 for Windows suffers from a SYSTEM privilege escalation vulnerability through the HiDriveMaintenanceService service. This service establishes a NetNamedPipe endpoint that allows applications to connect and call publicly exposed methods. An attacker can inject and execute code by hijacking the insecure communications with the service. This vulnerability also affects Telekom MagentaCLOUD through 5.7.0.0 and 1&1 Online Storage through 6.1.0.0.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2019-9486

3Ionos

StratoTelekom

31&1 Online Storage

Hidrive Desktop ClientMagentacloud

Nov 21, 2024

Apr 30, 2019

N/A· v4

8.8 HIGH· v3

9.0 HIGH· v2

STRATO HiDrive Desktop Client 5.0.1.0 for Windows suffers from a SYSTEM privilege escalation vulnerability through the HiDriveMaintenanceService service. This service establishes a NetNamedPipe endpoint that allows applications to connect and call publicly exposed methods. An attacker can inject and execute code by hijacking the insecure communications with the service. This vulnerability also affects Telekom MagentaCLOUD through 5.7.0.0 and 1&1 Online Storage through 6.1.0.0.Show less