Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Privilege Management for Windows - Elevation of Privilege
Vulnerability Description
Prior to 25.4.270.0, when wmic.exe is elevated with a full admin token the user can stop the Defendpoint service, bypassing anti-tamper protections. Once the service is disabled, the malicious user can add themselves to Administrators group and run any process with elevated permissions.
CVSS Information
N/A
Vulnerability Type
对候选路径的不恰当保护
Vulnerability Title
BeyondTrust Privilege Management for Windows 安全漏洞
Vulnerability Description
BeyondTrust Privilege Management for Windows是美国BeyondTrust公司的一款限制用户权限的软件。 BeyondTrust Privilege Management for Windows 25.4.270.0之前版本存在安全漏洞,该漏洞源于wmic.exe可能导致反篡改保护绕过。
CVSS Information
N/A
Vulnerability Type
N/A