Name of the Vulnerable Software and Affected Versions Аккорд-Win64 (affected versions not specified)

Description The issue is related to insufficient access control in the Аккорд-Win64 information security tool. Exploitation of this issue could allow a remote attacker to bypass an additional authentication procedure, specifically the personal identifier. If the attacker successfully authenticates with a login and password, they can circumvent the security policies set by the information security tool. This could enable the attacker to read and modify data not intended for the user, as well as modify data in the tool's working folder. This could potentially lead to elevated privileges to ntauthority/system due to a 'DLL-инъекция' type attack.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.