Avecto Defendpoint 4 prior to 4.4 SR6 and 5 prior to 5.1 SR1 has an Untrusted Search Path vulnerability, exploitable by modifying environment variables to trigger automatic elevation of an attacker's process launch.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-04-17T14:34:19

Updated: 2024-08-05T07:54:36.007Z

Reserved: 2018-05-09T00:00:00

Link: CVE-2018-10959

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-04-17T15:29:00.377

Modified: 2020-12-28T21:15:12.637

Link: CVE-2018-10959

cve-icon Redhat

No data.