PT-2021-20883 · Cir 2000+1 · Cir 2000+1

Published

2021-08-06

Updated

2021-08-14

CVE-2021-35312

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: CIR 2000 / Gestionale Amica Prodigy version 1.7

Description: A vulnerability was found in the Amica Prodigy's executable "RemoteBackup.Service.exe" which has incorrect permissions. This allows a local unprivileged user to replace it with a malicious file that will be executed with "LocalSystem" privileges.

Recommendations: For version 1.7, consider changing the permissions of the "RemoteBackup.Service.exe" executable to prevent local unprivileged users from replacing it with malicious files. As a temporary workaround, restrict access to the "RemoteBackup.Service.exe" executable until a patch is available.

Exploit

Fix

Incorrect Default Permissions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-276

Related Identifiers

CVE-2021-35312

Affected Products

Cir 2000

Gestionale Amica Prodigy

PT-2021-20883 · Cir 2000+1 · Cir 2000+1

CVE-2021-35312

Weakness Enumeration

Related Identifiers

Affected Products

References · 7