CVE-2024-47783

Name of the Vulnerable Software and Affected Versions SIPORT versions prior to V3.4.0

Description A vulnerability has been identified in the affected application, which improperly assigns file permissions to installation folders. This could allow a local attacker with an unprivileged account to override or modify the service executables and subsequently gain elevated privileges. The vulnerability is related to the improper assignment of permissions for critical resources, which can be exploited to elevate privileges.

Recommendations For versions prior to V3.4.0, update to version V3.4.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the installation folders to prevent modification of service executables. Additionally, monitor system activity for any suspicious changes to file permissions or service executables.