ГлавнаяУязвимости → CVE-2024-22042
7.8высокая

CVE-2024-22042

Описание

A vulnerability has been identified in Unicam FX (All versions). The windows installer agent used in affected product contains incorrect use of privileged APIs that trigger the Windows Console Host (conhost.exe) as a child process with SYSTEM privileges. This could be exploited by an attacker to perform a local privilege escalation attack.

Затрагиваемое ПО
Siemens Unicam fx
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://cert-portal.siemens.com/productcert/html/ssa-543502.htmlhttps://cert-portal.siemens.com/productcert/html/ssa-543502.html