CVE-2024-21805

Name of the Vulnerable Software and Affected Versions SKYSEA Client View versions from Ver.16.100 prior to Ver.19.2

Description An improper access control vulnerability exists in a specific folder of the software. This vulnerability can be exploited by a user who can log in to the PC where the product's Windows client is installed, allowing them to place an arbitrary file in the specific folder. If the file is a specially crafted DLL file, arbitrary code may be executed with SYSTEM privilege.

Recommendations For SKYSEA Client View versions from Ver.16.100 prior to Ver.19.2, update to version Ver.19.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the specific folder to minimize the risk of exploitation.