6 matches found
CVE-2019-5012
CVE-2019-5012 affects the Wacom macOS driver (6.3.32-3) update helper's startProcess function. The vulnerability allows a user-supplied script argument to be executed under root, enabling local privilege escalation. Exploitation requires local access; the attack surface is the update helper launc...
CVE-2019-5013
CVE-2019-5013 describes a local privilege escalation in the Wacom macOS driver (version 6.3.32-3) where the update helper’s start/stopLaunchDProcess command executes user-supplied input via launchctl under root, enabling a local attacker to load arbitrary LaunchAgents. Cisco Talos details confirm...
CVE-2022-38604
CVE-2022-38604 affects Wacom Driver 6.3.46-1 and earlier for Windows, with an arbitrary file deletion vulnerability in the driver component. Technical details across sources confirm the vulnerability is local and impacts confidentiality, integrity, and availability. No official fix/version is sta...
CVE-2022-43293
CVE-2022-43293 concerns Wacom Driver 6.3.46-1 for Windows, which contains an arbitrary file write vulnerability via the Wacom_Tablet.exe component. The affected software is the Windows driver; the underlying issue is an arbitrary file write capability, enabling potential manipulation of files by ...
CVE-2023-32163
Summary: CVE-2023-32163 affects Wacom Drivers for Windows, exploiting the Tablet Service via symbolic links to escalate privileges to SYSTEM. The flaw allows a local attacker who can run low-privileged code to abuse the service and create/modify files, enabling arbitrary code execution in the SYS...
CVE-2023-32162
The CVE-2023-32162 issue affects Wacom Drivers for Windows, specifically the PrefUtil.exe handling of WacomInstallI.txt. The root cause is incorrect permissions on WacomInstallI.txt, enabling a local attacker who can run low-privileged code to escalate to SYSTEM and execute arbitrary code. No exp...