Published on: Not Yet Published
Last Modified on: 09/09/2022 07:26:00 PM UTC
CVE-2022-38176Source: Mitre Source: NIST CVE.ORG Print: PDF
Certain versions of Safeq from Ysoft contain the following vulnerability:
An issue was discovered in YSoft SAFEQ 6 before 6.0.72. Incorrect privileges were configured as part of the installer package for the Client V3 services, allowing for local user privilege escalation by overwriting the executable file via an alternative data stream. NOTE: this is not the same as CVE-2021-31859.
- CVE-2022-38176 has been assigned by [email protected] to track the vulnerability - currently rated as HIGH severity.
CVSS3 Score: 7.8 - HIGH
|YSoft SAFEQ Client V3 Local Privilege Escalation Vulnerability | Y Soft|| www.ysoft.com |
|Y Soft Corporation - Intelligent Enterprise Office Solutions|| ysoft.com |
There are currently no QIDs associated with this CVE
Known Affected Configurations (CPE V2.3)
No vendor comments have been submitted for this CVE
|@CVEreport||CVE-2022-38176 : An issue was discovered in YSoft SAFEQ 6 before 6.0.72. Incorrect privileges were configured as pa… twitter.com/i/web/status/1…||2022-09-06 21:05:05|