Local Privilege Escalation Vulnerability in MA for Windows Prior to 5.7.6 through Manipulation of Symbolic Links

Local Privilege Escalation Vulnerability in MA for Windows Prior to 5.7.6 through Manipulation of Symbolic Links

CVE-2022-1256 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A local privilege escalation vulnerability in MA for Windows prior to 5.7.6 allows a local low privileged user to gain system privileges through running the repair functionality. Temporary file actions were performed on the local user's %TEMP% directory with System privileges through manipulation of symbolic links.

Learn more about our User Device Pen Test.