Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistJpcertCVELIST:CVE-2024-21805
HistoryMar 12, 2024 - 7:20 a.m.

CVE-2024-21805

2024-03-1207:20:53
jpcert
www.cve.org
skysea client view
access control
vulnerability
arbitrary file placement
arbitrary code execution
dll file
system privilege
ver.16.100
ver.19.2
windows client

7.1 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Improper access control vulnerability exists in the specific folder of SKYSEA Client View versions from Ver.16.100 prior to Ver.19.2. If this vulnerability is exploited, an arbitrary file may be placed in the specific folder by a user who can log in to the PC where the product’s Windows client is installed. In case the file is a specially crafted DLL file, arbitrary code may be executed with SYSTEM privilege.

CNA Affected

[
  {
    "vendor": "Sky Co.,LTD.",
    "product": "SKYSEA Client View",
    "versions": [
      {
        "version": "versions from Ver.16.100 prior to Ver.19.2",
        "status": "affected"
      }
    ]
  }
]

Related

prion 1
nvd 1
cve 1
jvn 1
prion
prion
Improper access control
2024-03-12 08:15:00
nvd
nvd
CVE-2024-21805
2024-03-12 08:15:45
cve
cve
CVE-2024-21805
2024-03-12 08:15:45
jvn
jvn
JVN#54451757: Multiple vulnerabilities in SKYSEA Client View
2024-03-07 00:00:00

7.1 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON
Related for CVELIST:CVE-2024-21805
prion1nvd1cve1jvn1