4 matches found
CVE-2023-45159
1E Client installer can perform arbitrary file deletion on protected files. A non-privileged user could provide a symbolic link or Windows junction to point to a protected directory in the installer that the 1E Client would then clear on service startup. A hotfix is available from the 1E support...
CVE-2023-45159 1E Client installer can perform arbitrary file deletion on protected files
1E Client installer can perform arbitrary file deletion on protected files. A non-privileged user could provide a symbolic link or Windows junction to point to a protected directory in the installer that the 1E Client would then clear on service startup. A hotfix is available from the 1E support...
CVE-2023-45159 1E Client installer can perform arbitrary file deletion on protected files
1E Client installer can perform arbitrary file deletion on protected files. A non-privileged user could provide a symbolic link or Windows junction to point to a protected directory in the installer that the 1E Client would then clear on service startup. A hotfix is available from the 1E support...
CVE-2019-11987
CVE-2019-11987 affects HPE Smart Update Manager (SUM) prior to v8.4. The vulnerability allows local unauthorized elevation of privilege due to insufficient authentication/authorization and privilege management. Affected component is SUM’s update/management workflow on HP ProLiant servers. Impact ...