3 matches found
CVE-2023-45159
1E Client installer can perform arbitrary file deletion on protected files. A non-privileged user could provide a symbolic link or Windows junction to point to a protected directory in the installer that the 1E Client would then clear on service startup. A hotfix is available from the 1E support...
CVE-2023-45159
The CVE-2023-45159 issue affects 1E Client installer and allows an attacker with local access to cause arbitrary deletion of protected files by abusing a symbolic link or Windows junction to point the installer at a protected directory, which the client clears on service startup. Root cause: inst...
CVE-2023-45159 1E Client installer can perform arbitrary file deletion on protected files
1E Client installer can perform arbitrary file deletion on protected files. A non-privileged user could provide a symbolic link or Windows junction to point to a protected directory in the installer that the 1E Client would then clear on service startup. A hotfix is available from the 1E support...