Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Privilege Escalation via Process Hijacking in 1E-Exchange-NomadClientHealth-ConfigureGeneralSetting instruction
Vulnerability Description
A privilege escalation vulnerability was discovered in TeamViewer DEX (former 1E DEX), specifically within the 1E-Exchange-NomadClientHealth-ConfigureGeneralSetting instruction prior V3.4. Improper protection of the execution path on the local device allows attackers, with local access to the device during execution, to hijack the process and execute arbitrary code with SYSTEM privileges.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
对搜索路径元素未加控制
Vulnerability Title
TeamViewer DEX Client 安全漏洞
Vulnerability Description
TeamViewer DEX Client是德国TeamViewer公司的一个数字化员工体验和终端管理软件。 TeamViewer DEX Client V3.4之前版本存在安全漏洞,该漏洞源于执行路径保护不当,可能导致权限提升和执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A