CVE-2019-12097

Name of the Vulnerable Software and Affected Versions Telerik Fiddler version 5.0.20182.28034

Description The issue concerns the lack of verification of the hash of EnableLoopback.exe before its execution, potentially leading to code execution or local privilege escalation if the original EnableLoopback.exe is replaced.

Recommendations For version 5.0.20182.28034, as a temporary workaround, consider restricting access to EnableLoopback.exe to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.