Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SAP PowerDesigner Proxy - version 16.7, allows an attacker with low privileges and has local access, with the ability to work around system’s root disk access restrictions to Write/Create a program file on system disk root path, which could then be executed with elevated privileges of the application during application start up or reboot, potentially compromising Confidentiality, Integrity and Availability of the system.
CVSS Information
N/A
Vulnerability Type
未经引用的搜索路径或元素
Vulnerability Title
SAP PowerDesigner 代码问题漏洞
Vulnerability Description
SAP PowerDesigner是德国思爱普(SAP)公司的一款数据库设计软件。 SAP PowerDesigner Proxy 16.7版本存在代码问题漏洞。攻击者利用该漏洞绕过系统的根磁盘访问限制,在系统磁盘根路径上写入或创建程序文件,并提升应用程序的权限,最终导致损害系统的机密性、完整性和可用性。
CVSS Information
N/A
Vulnerability Type
N/A