PT-2022-6222 · Unknown · Ui Desktop For Windows

Published

2022-09-16

Updated

2022-09-26

CVE-2022-35257

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions UI Desktop for Windows version 0.55.1.2 and earlier

Description A local privilege escalation issue in UI Desktop for Windows allows a malicious actor with local access to a Windows device to run arbitrary commands as SYSTEM. This is related to inadequate access control, which can be exploited to execute arbitrary commands.

Recommendations For UI Desktop for Windows version 0.55.1.2 and earlier, update to a version later than 0.55.1.2 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Privilege Management

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269CWE-284

Related Identifiers

BDU:2023-00500

CVE-2022-35257

Affected Products

Ui Desktop For Windows

PT-2022-6222 · Unknown · Ui Desktop For Windows

CVE-2022-35257

Weakness Enumeration

Related Identifiers

Affected Products

References · 5