← voltar
CVE-2023-28122

CVE-2023-28122

CVSS 7.8 HIGHEPSS 0.2%CWE-269
Vexday Risk Score
21Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 7.8EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
19 abr 2023Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
A local privilege escalation (LPE) vulnerability in UI Desktop for Windows (Version 0.59.1.71 and earlier) allows a malicious actor with local access to a Windows device running said application to submit arbitrary commands as SYSTEM.This vulnerability is fixed in Version 0.62.3 and later.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H