CVE
Vulnerable Software
HIDCCEMonitorSVC Version <= 5.2.4.3
Vulnerability
A Unquoted service path in HIDCCEMonitorSVC software allows a local attacker to potentially escalate privileges to system level.
Timeline
- 29.10.2021 Vendor informed
- 10.11.2021 Vendor confirms the vulnerability and informs HanseSecure that the vulnerability will be patched in the next version.
- 21.12.2020 Disclosure
References:
- Hall of Fame Wordline
- Seucrity Advisory Wordline: SA_WL_IDC_202111_001