Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In Adam Kropelin adk0212 APC UPS Daemon through 3.14.14, the default installation of APCUPSD allows a local authenticated, but unprivileged, user to run arbitrary code with elevated privileges by replacing the service executable apcupsd.exe with a malicious executable that will run with SYSTEM privileges at startup. This occurs because of "RW NT AUTHORITY\Authenticated Users" permissions for %SYSTEMDRIVE%\apcupsd\bin\apcupsd.exe.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
APC UPS Daemon 代码问题漏洞
Vulnerability Description
APC UPS Daemon是一款用于监测UPS电源的软件。 APC UPS Daemon 3.14.14及之前的版本中存在代码问题漏洞。本地攻击者可利用该漏洞以提升的权限执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A