Today > vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-41139

July 29, 2024, 2:12 p.m.

Tags

vultures@jpcert.or.jp
2024-07-29
CVE-2024-41139

Product(s) Impacted

SKYSEA Client View

  • 6.010.06
  • 19.210.04e

Description

Incorrect privilege assignment vulnerability exists in SKYSEA Client View Ver.6.010.06 to Ver.19.210.04e. If a user who can log in to the PC where the product's Windows client is installed places a specially crafted DLL file in a specific folder, arbitrary code may be executed with SYSTEM privilege.

Weaknesses

Date

Published: July 29, 2024, 9:15 a.m.

Last Modified: July 29, 2024, 2:12 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

vultures@jpcert.or.jp

References

https://jvn.jp/ vultures@jpcert.or.jp
https://www.skyseaclientview.net/ vultures@jpcert.or.jp