2 matches found
CVE-2021-29645
Hitachi JP1/IT Desktop Management 2 Agent 9 through 12 calls the SendMessageTimeoutW API with arbitrary arguments via a local pipe, leading to a local privilege escalation vulnerability. An attacker who exploits this issue could execute arbitrary code on the local system...
CVE-2021-29645
Hitachi JP1/IT Desktop Management 2 Agent 9–12 is affected. The issue arises from the SendMessageTimeoutW API being invoked with arbitrary arguments via a local pipe, enabling local privilege escalation and potential arbitrary code execution on the host. The CVE entry documents a local attack vec...