CVE-2022-4991

The CVE-2022-4991 issue affects Tychon on Windows where an OpenSSL OPENSSLDIR subdirectory can be controlled by an unprivileged user. A privileged service in Tychon uses this OpenSSL component, and a user who can place a crafted openssl.cnf at a specific path may execute arbitrary code with SYSTE...

PT-2024-15524 · Openssl +1 · Openssl +1

Name of the Vulnerable Software and Affected Versions: Rapid7 Minerva Armor versions prior to 4.5.5 Description: The issue is a privilege escalation vulnerability that allows an authenticated attacker to elevate privileges and execute arbitrary code with SYSTEM privilege. This is caused by the...