CVE-2024-36246
May 31, 2024, 1:01 p.m.
Tags
Product(s) Impacted
Unifier
- 5.0 or later
Unifier
- 5.0 or later as well as the patch 20240527 not applied
Description
Missing authorization vulnerability exists in Unifier and Unifier Cast Version.5.0 or later, and the patch "20240527" not applied. If this vulnerability is exploited, arbitrary code may be executed with LocalSystem privilege. As a result, a malicious program may be installed, data may be modified or deleted.
Weaknesses
Date
Published: May 31, 2024, 6:15 a.m.
Last Modified: May 31, 2024, 1:01 p.m.
Status : Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
vultures@jpcert.or.jp
References
vultures@jpcert.or.jp
vultures@jpcert.or.jp