CVE-2020-15261

Sažetak

On Windows the Veyon Service before version 4.4.2 contains an unquoted service path vulnerability, allowing locally authenticated users with administrative privileges to run malicious executables with LocalSystem privileges. Since Veyon users (both students and teachers) usually don't have administrative privileges, this vulnerability is only dangerous in anyway unsafe setups. The problem has been fixed in version 4.4.2. As a workaround, the exploitation of the vulnerability can be prevented by revoking administrative privileges from all potentially untrustworthy users.

Reference

https://github.com/veyon/veyon/commit/f231ec511b9a09f43f49b2c7bb7c60b8046276b1
https://github.com/veyon/veyon/security/advisories/GHSA-c8cc-x786-hqqp
https://github.com/veyon/veyon/issues/657
http://packetstormsecurity.com/files/162873/Veyon-4.4.1-Unquoted-Service-Path.html
https://www.exploit-db.com/exploits/49925
https://www.exploit-db.com/exploits/48246

CVSS

Base:	7.2
Impact:	10.0
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

18-10-2022 - 20:13

Objavljeno

19-10-2020 - 22:15