CVE-2020-37160

Name of the Vulnerable Software and Affected Versions SprintWork version 2.3.1

Description SprintWork 2.3.1 contains multiple local privilege escalation issues due to insecure file, service, and folder permissions on Windows systems. Local unprivileged users can exploit missing executable files and weak service configurations to create a new administrative user and gain complete system access.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.