Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd551230f0-3615-47bd-b7cc-93e92e730bbfNVD:CVE-2023-7270
HistoryJun 27, 2024 - 10:15 a.m.

CVE-2023-7270

2024-06-2710:15:10
551230f0-3615-47bd-b7cc-93e92e730bbf
web.nvd.nist.gov
4
softmaker office
freeoffice
vulnerability
system privilege escalation
msi installer

0.0004 Low

EPSS

Percentile

15.7%

JSON

An issue was discovered in SoftMaker Office 2024 / NX before revision 1214 and SoftMaker FreeOffice 2014 before revision 1215. FreeOffice 2021 is also affected, but won’t be fixed.

The SoftMaker Office and FreeOffice MSI installer files were found to
produce a visible conhost.exe window running as the SYSTEM user when
using the repair function of msiexec.exe.Β This allows a local,
low-privileged attacker to use a chain of actions, to open a fully
functional cmd.exe with the privileges of the SYSTEM user.

Related

cvelist 1
cve 1
cvelist
cvelist
CVE-2023-7270 Local Privilege Escalation via MSI installer
2024-06-27 09:28:21
cve
cve
CVE-2023-7270
2024-06-27 10:15:10

0.0004 Low

EPSS

Percentile

15.7%

JSON
Related for NVD:CVE-2023-7270
cvelist1cve1