CVE-2020-15261
8
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Summary
On Windows the Veyon Service before version 4.4.2 contains an unquoted service path vulnerability, allowing locally authenticated users with administrative privileges to run malicious executables with LocalSystem privileges. Since Veyon users (both students and teachers) usually don't have administrative privileges, this vulnerability is only dangerous in anyway unsafe setups. The problem has been fixed in version 4.4.2. As a workaround, the exploitation of the vulnerability can be prevented by revoking administrative privileges from all potentially untrustworthy users.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| veyon | veyon | < 0.11.5 | affected |
Weaknesses
- CWE-428: CWE-428 Unquoted Search Path or Element
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/veyon/veyon/security/advisories/GHSA-c8cc-x786-hqqp
- https://github.com/veyon/veyon/issues/657
- https://github.com/veyon/veyon/commit/f231ec511b9a09f43f49b2c7bb7c60b8046276b1
- http://packetstormsecurity.com/files/162873/Veyon-4.4.1-Unquoted-Service-Path.html
- https://www.exploit-db.com/exploits/49925
- https://www.exploit-db.com/exploits/48246
References
- https://github.com/veyon/veyon/security/advisories/GHSA-c8cc-x786-hqqp
- https://github.com/veyon/veyon/issues/657
- https://github.com/veyon/veyon/commit/f231ec511b9a09f43f49b2c7bb7c60b8046276b1
- http://packetstormsecurity.com/files/162873/Veyon-4.4.1-Unquoted-Service-Path.html
- https://www.exploit-db.com/exploits/49925
- https://www.exploit-db.com/exploits/48246
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.