CVE-2024-50591

An attacker with local access the to medical office computer can escalate his Windows user privileges to "NT AUTHORITY\SYSTEM" by exploiting a command injection vulnerability in the Elefant Update Service. The command injection can be exploited by communicating with the Elefant Update Service whi...

PT-2024-34346 · Elefant +1 · Elefant Software Updater +1

Name of the Vulnerable Software and Affected Versions: Elefant Software Updater ESU affected versions not specified Description: An attacker with local access to a medical office computer can escalate their Windows user privileges to "NT AUTHORITYSYSTEM" by exploiting a command injection...