Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in PDF24 Creator 11.14.0. The configuration of the msi installer file was found to produce a visible cmd.exe window when using the repair function of msiexec.exe. This allows an unprivileged local attacker to use a chain of actions (e.g., an oplock on faxPrnInst.log) to open a SYSTEM cmd.exe.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PDF24 Creator 安全漏洞
Vulnerability Description
PDF24 Creator是PDF24开源的一款完全免费且实用的PDF工具箱,可以轻松地创建、编辑和转换PDF文件。 PDF24 Creator 11.14.0 版本存在安全漏洞,该漏洞源于使用 msiexec.exe 的修复功能时,发现 msi 安装程序文件的配置会产生可见的 cmd.exe 窗口。
CVSS Information
N/A
Vulnerability Type
N/A