CVE-2021-4481

Sažetak

Dräger Protector Software prior to version 6.4.2 contains a local privilege escalation vulnerability due to insecure file system permissions that allows local attackers to execute arbitrary code with elevated privileges. Attackers can replace binaries or loaded modules on the host system to execute code with NT SYSTEM privileges.

Reference

https://static.draeger.com/security/download/2021-267-01-Draeger-Protector-Software-vulnerabilities.pdf
https://www.vulncheck.com/advisories/dr-ger-protector-software-local-privilege-escalation-via-insecure-file-permissions

CVSS

Base:	8.2
Impact:	5.8
Exploitability:	1.8

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	HIGH	HIGH

CVSS vektor

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:H

Zadnje važnije ažuriranje

03-06-2026 - 23:16

Objavljeno

02-06-2026 - 22:16