Access Manager@* Security Vulnerabilities and Issues — Access Manager@* CVE List

Lucene search

CapmonAccess Manager*

3 matches found

CVE•added 2019/03/15 3:29 p.m.•35 views

CVE-2018-18255

An issue was discovered in CapMon Access Manager 5.4.1.1005. The client applications of AccessManagerCoreService.exe communicate with this server through named pipes. A user can initiate communication with the server by creating a named pipe and sending commands to achieve elevated privileges.

7.8CVSS7.6AI score0.0004EPSS

CVE•added 2019/03/15 3:29 p.m.•27 views

CVE-2018-18253

An issue was discovered in CapMon Access Manager 5.4.1.1005. CALRunElevated.exe attempts to enforce access control by adding an unprivileged user to the local Administrators group for a very short time to execute a single command. However, the user is left in that group if the command crashes, and ...

7CVSS7AI score0.00037EPSS

CVE•added 2019/03/15 3:29 p.m.•26 views

CVE-2018-18254

An issue was discovered in CapMon Access Manager 5.4.1.1005. An unprivileged user can read the cal_whitelist table in the Custom App Launcher (CAL) database, and potentially gain privileges by placing a Trojan horse program at an app pathname.

7.8CVSS7.6AI score0.00047EPSS