4 matches found
CVE-2022-39959
Panini Everest Engine 2.0.4 allows unprivileged users to create a file named Everest.exe in the %PROGRAMDATA%\Panini folder. This leads to privilege escalation because a service, running as SYSTEM, uses the unquoted path of %PROGRAMDATA%\Panini\Everest Engine\EverestEngine.exe and therefore a...
CVE-2022-39959
creationtimestamp| type| source ---|---|--- 2022-10-08 02:17:38+00:00| seen| https://t.me/cibsecurity/51047...
CVE-2022-39959
Panini Everest Engine 2.0.4 allows unprivileged users to create a file named Everest.exe in the %PROGRAMDATA%\Panini folder. This leads to privilege escalation because a service, running as SYSTEM, uses the unquoted path of %PROGRAMDATA%\Panini\Everest Engine\EverestEngine.exe and therefore a...
CVE-2022-39959
CVE-2022-39959 – Panini Everest Engine 2.0.4 : A privilege-escalation flaw arising from an unprivileged user being able to create a file named Everest.exe in %PROGRAMDATA%\Panini. The service running as SYSTEM uses the unquoted path %PROGRAMDATA%\Panini\Everest Engine\EverestEngine.exe, which can...