PT-2024-33512 · Unknown · Settings Suggestions
Skyh1Ll
·
Published
2024-11-05
·
Updated
2024-11-12
·
CVE-2024-49401
CVSS v3.1
7.1
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Settings Suggestions versions prior to SMR Nov-2024 Release 1
Description
The issue is related to improper input validation in Settings Suggestions, allowing local attackers to launch privileged activities. This could potentially lead to local privilege escalation.
Recommendations
For versions prior to SMR Nov-2024 Release 1, update to the SMR Nov-2024 Release 1 or later to resolve the issue. As a temporary workaround, consider restricting access to Settings Suggestions to minimize the risk of exploitation.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Settings Suggestions