Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An unquoted Windows search path vulnerability existed in the install the MOVE 4.10.x and earlier Windows install service (mvagtsce.exe). The misconfiguration allowed an unauthorized local user to insert arbitrary code into the unquoted service path to obtain privilege escalation and stop antimalware services.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
未经引用的搜索路径或元素
Vulnerability Title
Trellix MOVE 代码问题漏洞
Vulnerability Description
Trellix MOVE是美国火眼(Trellix)公司的一个用于优化虚拟环境的网格管理防病毒应用程序。 Trellix MOVE 4.10.0版本及之前版本存在安全漏洞。攻击者利用该漏洞将任意代码插入未加引号的服务路径中,以获取权限升级。
CVSS Information
N/A
Vulnerability Type
N/A