2 matches found
CVE-2021-1492
The CVE-2021-1492 issue affects the Duo Authentication Proxy installer prior to version 5.2.1. The root cause is improper validation of file installation paths, allowing a local attacker to coerce the installer into writing to arbitrary privileged directories during new installations. Consequence...
CVE-2021-1492 Duo Authentication Proxy Installer Denial of Service Vulnerability
The Duo Authentication Proxy installer prior to 5.2.1 did not properly validate file installation paths. This allows an attacker with local user privileges to coerce the installer to write to arbitrary privileged directories. If successful, an attacker can manipulate files used by Duo...