ГлавнаяУязвимости → CVE-2024-57394
8.8высокая

CVE-2024-57394

Описание

The quarantine - restore function in Qi-ANXIN Tianqing Endpoint Security Management System v10.0 allows user to restore a malicious file to an arbitrary file path. Attackers can write malicious DLL to system path and perform privilege escalation by leveraging Windows DLL hijacking vulnerabilities.

Затрагиваемое ПО
Qianxin Tianqing endpoint security management system
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://en.qianxin.com/product/detail/165https://github.com/cwjchoi01/CVE-2024-57394