Avecto Defendpoint 4 prior to 4.4 SR6 and 5 prior to 5.1 SR1 has an Untrusted Search Path vulnerability, exploitable by modifying environment variables to trigger automatic elevation of an attacker's process launch.
References
Configurations
Configuration 1 (hide)
|
History
28 Dec 2020, 21:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2019-04-17 15:29
Updated : 2023-12-10 12:59
NVD link : CVE-2018-10959
Mitre link : CVE-2018-10959
CVE.ORG link : CVE-2018-10959
JSON object : View
Products Affected
beyondtrust
- avecto_defendpoint
CWE
CWE-426
Untrusted Search Path