PT-2023-21590 · Qualys · Qualys Cloud Agent For Windows

Name of the Vulnerable Software and Affected Versions: Qualys Cloud Agent for Windows versions prior to 4.8.0.31 Description: An NTFS Junction condition exists in the Qualys Cloud Agent for Windows platform. Attackers may write files to arbitrary locations via a local attack vector, allowing them...

CVE-2020-27643

The %PROGRAMDATA%\1E\Client directory in 1E Client 5.0.0.745 and 4.1.0.267 allows remote authenticated users and local users to create and modify files in protected directories where they would not normally have access to create or modify files via the creation of a junction point to a system...