Hitachi JP1/IT Desktop Management 2 Agent 9 through 12 calls the SendMessageTimeoutW API with arbitrary arguments via a local pipe, leading to a local privilege escalation vulnerability. An attacker who exploits this issue could execute arbitrary code on the local system.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-10-12T18:30:35

Updated: 2024-08-03T22:11:06.115Z

Reserved: 2021-03-30T00:00:00

Link: CVE-2021-29645

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2021-10-12T19:15:07.677

Modified: 2022-07-12T17:42:04.277

Link: CVE-2021-29645

cve-icon Redhat

No data.