PT-2022-17058 · Unknown · Remote Desktop Commander Suite Agent

Florian Hansemann

·

Published

2022-03-03

·

Updated

2022-03-09

·

CVE-2022-25031

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Remote Desktop Commander Suite Agent versions prior to 4.8
Description The issue allows attackers to escalate privileges to the system level due to an unquoted service path.
Recommendations For versions prior to 4.8, update to version 4.8 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-428

Related Identifiers

CVE-2022-25031

Affected Products

Remote Desktop Commander Suite Agent