Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
DLL Hijacking vulnerability in SapSetup (Software Installation Program)
Vulnerability Description
A Windows user with basic user authorization can exploit a DLL hijacking attack in SapSetup (Software Installation Program) - version 9.0, resulting in a privilege escalation running code as administrator of the very same Windows PC. A successful attack depends on various preconditions beyond the attackers control.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
对搜索路径元素未加控制
Vulnerability Title
SAP SapSetup 代码问题漏洞
Vulnerability Description
SAP SapSetup是德国思爱普(SAP)公司的一个应用程序。用于在 Windows 上安装、更新、维护和分发软件的工具套件。 SAP SapSetup 9.0版本存在代码问题漏洞,攻击者利用该漏洞可以权限提升。
CVSS Information
N/A
Vulnerability Type
N/A