Local File Write and Privilege Escalation Vulnerability in WIN-911 2021 R1 and R2

Local File Write and Privilege Escalation Vulnerability in WIN-911 2021 R1 and R2

CVE-2022-23922 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

WIN-911 2021 R1 and R2 are vulnerable to a permissions misconfiguration that may allow an attacker to locally write files to the Program Announcer directory and elevate permissions whenever the program is executed.

Learn more about our Web Application Penetration Testing UK.