CVE-2023-41099

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Atos Eviden CardOS API versions prior to 5.5.5.2811

Description The issue allows for Local Privilege Escalation, enabling an attacker to escalate privileges from a regular user to SYSTEM. This occurs in the Windows installer component of the affected software.

Recommendations For versions prior to 5.5.5.2811, update to version 5.5.5.2811 or later to resolve the issue.

Fix

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269

Related Identifiers

CVE-2023-41099

Affected Products

Atos Eviden Cardos Api

CVE-2023-41099

Weakness Enumeration

Related Identifiers

Affected Products

References · 6