Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
KioskSimpleService.exe in RedSwimmer KioskSimple 1.4.7.0 suffers from a privilege escalation vulnerability in the WCF endpoint. The exposed methods allow read and write access to the Windows registry and control of services. These methods may be abused to achieve privilege escalation via execution of attacker controlled binaries.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
RedSwimmer KioskSimple 权限许可和访问控制问题漏洞
Vulnerability Description
RedSwimmer KioskSimple是美国RedSwimmer公司的一款自助服务器软件。 RedSwimmer KioskSimple 1.4.7.0版本中的KioskSimpleService.exe文件的WCF端点存在提权漏洞。攻击者可利用该漏洞获取Windows注册表的读取和写入权限并可能提升权限。
CVSS Information
N/A
Vulnerability Type
N/A