Vivavis 权限许可和访问控制问题漏洞

Vivavis is an automated control system from Vivavis, Inc. Vivavis suffers from a Permission Permission and Access Control Issues vulnerability that stems from an authorization issue contained in prunsrv.exe that could lead to arbitrary code execution...

CVE-2019-5631

The Rapid7 InsightAppSec broker suffers from a DLL injection vulnerability in the 'prunsrv.exe' component of the product. If exploited, a local user of the system who must already be authenticated to the operating system can elevate their privileges with this vulnerability to the privilege level ...