CVE-2020-16268

The CVE-2020-16268 entry concerns the 1E Client MSI installer (versions 4.1.0.267 and 5.0.0.745). The flaw arises when using the repair option with a Transform (MST) that can disable the Nomad module; an attacker can craft a .reg file in a specific location to write to any registry key as an elev...

CVE-2023-45160

This CVE (CVE-2023-45160) affects 1E Client: an ordinary user could subvert downloaded instruction resource files by replacing a resource script file created by an instruction at run time with a malicious script. The issue is mitigated by lockdown of the 1E Client’s temporary directory in the rel...

CVE-2023-45159

The CVE-2023-45159 issue affects 1E Client installer and allows an attacker with local access to cause arbitrary deletion of protected files by abusing a symbolic link or Windows junction to point the installer at a protected directory, which the client clears on service startup. Root cause: inst...

CVE-2020-27643

Affected product: 1E Client (versions 4.1.0.267 and 5.0.0.745). Root cause: MSI installer and related components allow creation of a junction point to a system directory via unreferenced paths, enabling remote authenticated or local users to create/modify files in protected directories. Result: p...

CVE-2020-27644

CVE-2020-27644 affects 1E Client 5.0.0.745 (Inventory module). The vulnerability arises from the Inventory module not properly handling an unquoted path when executing %PROGRAMFILES%\1E\Client\Tachyon.Performance.Metrics.exe, enabling elevation of privilege by placing a malicious cryptbase.dll in...

CVE-2020-27645

The CVE-2020-27645 entry concerns 1E Client, specifically version 5.0.0.745 (and related entries reference 4.1.0.267). The vulnerability arises in the Inventory module where an unquoted path is used when executing Tachyon.Performance.Metrics.exe, which can enable elevated privileges for authentic...