An exploitable local privilege elevation vulnerability exists in the file system permissions of Sytech XL Reporter v14.0.1 install directory. Depending on the vector chosen, an attacker can overwrite service executables and execute arbitrary code with privileges of user set to run the service or replace other files within the installation folder, which would allow for local privilege escalation.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: talos
Published: 2021-02-19T16:54:44
Updated: 2024-08-04T12:18:18.310Z
Reserved: 2020-05-26T00:00:00
Link: CVE-2020-13549

No data.

Status : Modified
Published: 2021-02-19T17:15:13.047
Modified: 2024-11-21T05:01:28.520
Link: CVE-2020-13549

No data.