Gee-Netics

**Name of the Vulnerable Software and Affected Versions** AXIS Camera Station Pro (affected versions not specified) **Description** A non-admin user can remove system files, causing a boot loop, by redirecting a file deletion when recording video. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** HPE Aruba Networking Virtual Intranet Access (VIA) client (affected versions not specified) **Description** A vulnerability in the HPE Aruba Networking Virtual Intranet Access (VIA) client could allow malicious users to overwrite arbitrary files as NT AUTHORITYSYSTEM (root). A successful exploit could allow the creation of a Denial-of-Service (DoS) condition affecting the Microsoft Windows Operating System. This vulnerability does not affect Linux and Android based clients. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Zabbix Agent versions prior to 7.0.0rc2 **Description** The issue is related to improper permission storage in the Zabbix Agent application. This can allow an attacker to elevate their privileges. A non-admin user can change or remove important features within the application, thus impacting its integrity and availability. **Recommendations** For versions prior to 7.0.0rc2, upgrade the affected components immediately to mitigate the risk. As a temporary workaround, consider restricting access to sensitive features within the Zabbix Agent application to prevent unauthorized changes.

**Name of the Vulnerable Software and Affected Versions** Mattermost Desktop App versions <=5.7.0 **Description** The issue allows a remote attacker to force a victim to run arbitrary programs on their system via custom URI schemes, due to the application's failure to correctly prompt for permission when opening external URLs. **Recommendations** For Mattermost Desktop App versions <=5.7.0, update to a version greater than 5.7.0 to resolve the issue. As a temporary workaround, consider disabling the handling of custom URI schemes in the application until a patch is available. Restrict access to external URLs to minimize the risk of exploitation. Avoid using the Mattermost Desktop App to open external URLs from untrusted sources until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Snowflake Hive MetaStore Connector (affected versions not specified) **Description** The issue concerns a potential elevation of privilege vulnerability in a `helper script` for the Hive MetaStore Connector. A malicious insider without admin privileges could use the script to download content from a Microsoft domain to the local system and replace the valid content with malicious code. If the attacker then also had local access to the same system where the maliciously modified script is run, they could attempt to manipulate users into executing the attacker-controlled helper script, potentially gaining elevated privileges to the local system. **Recommendations** Users who use the helper script are strongly advised to use the latest version as soon as possible. Users unable to upgrade should avoid using the helper script.

**Name of the Vulnerable Software and Affected Versions** Dell OS Recovery Tool versions 2.2.4013, 2.3.7012.0, and 2.3.7515.0 **Description** The issue is related to an Improper Access Control Vulnerability. A local authenticated non-administrator user could potentially exploit this, leading to the elevation of privilege on the system. **Recommendations** For version 2.2.4013, update to a version that contains a fix for this issue. For version 2.3.7012.0, update to a version that contains a fix for this issue. For version 2.3.7515.0, update to a version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** HPE Aruba Networking Virtual Intranet Access (VIA) client (affected versions not specified) **Description** A vulnerability in the HPE Aruba Networking Virtual Intranet Access (VIA) client could allow malicious users to overwrite arbitrary files as NT AUTHORITYSYSTEM. A successful exploit could allow these malicious users to create a Denial-of-Service (DoS) condition affecting the Microsoft Windows operating System boot process. The vulnerability is related to insufficient access control. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Malwarebytes AdwCleaner version 8.4.0 **Description** The issue allows a non-admin user to escalate privileges to SYSTEM via a symbolic link. This is due to an insecure file delete operation performed by Malwarebytes AdwCleaner on a user-controllable target location, specifically the file C:AdwCleanerLogsAdwCleaner Debug.log. **Recommendations** For Malwarebytes AdwCleaner version 8.4.0, consider restricting access to the `C:AdwCleanerLogs` directory to prevent exploitation until a patch is available. As a temporary workaround, avoid using the `AdwCleaner Debug.log` file in the affected directory. At the moment, there is no information about a newer version that contains a fix for this vulnerability.