Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Versa SASE Client for Windows < 7.9.5 Arbitrary Folder Deletion Leading to Local Privilege Escalation
Vulnerability Description
Versa SASE Client for Windows versions released between 7.8.7 and 7.9.4 contain a local privilege escalation vulnerability in the audit log export functionality. The client communicates user-controlled file paths to a privileged service, which performs file system operations without impersonating the requesting user. Due to improper privilege handling and a time-of-check time-of-use race condition combined with symbolic link and mount point manipulation, a local authenticated attacker can coerce the service into deleting arbitrary directories with SYSTEM privileges. This can be exploited to delete protected system folders such as C:\\Config.msi and subsequently achieve execution as NT AUTHORITY\\SYSTEM via MSI rollback techniques.
CVSS Information
N/A
Vulnerability Type
带着不必要的权限执行
Vulnerability Title
Versa SASE Client for Windows 安全漏洞
Vulnerability Description
Versa SASE Client for Windows是美国Versa公司的一个安全联网客户端。 Versa SASE Client for Windows 7.8.7版本至7.9.4版本存在安全漏洞,该漏洞源于审计日志导出功能存在本地权限提升漏洞,可能导致任意目录删除。
CVSS Information
N/A
Vulnerability Type
N/A