CVE Vulnerabilities

CVE-2022-38176

Published: Sep 06, 2022 | Modified: Nov 21, 2024
CVSS 3.x
7.8
HIGH
Source:
NVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

An issue was discovered in YSoft SAFEQ 6 before 6.0.72. Incorrect privileges were configured as part of the installer package for the Client V3 services, allowing for local user privilege escalation by overwriting the executable file via an alternative data stream. NOTE: this is not the same as CVE-2021-31859.

Affected Software

Name Vendor Start Version End Version
Safeq Ysoft 6.0 (including) 6.0 (including)
Safeq Ysoft 6.0-build32 (including) 6.0-build32 (including)
Safeq Ysoft 6.0-build33 (including) 6.0-build33 (including)
Safeq Ysoft 6.0-build34 (including) 6.0-build34 (including)
Safeq Ysoft 6.0-build35 (including) 6.0-build35 (including)
Safeq Ysoft 6.0-build36 (including) 6.0-build36 (including)
Safeq Ysoft 6.0-build37 (including) 6.0-build37 (including)
Safeq Ysoft 6.0-build38 (including) 6.0-build38 (including)
Safeq Ysoft 6.0-build39 (including) 6.0-build39 (including)
Safeq Ysoft 6.0-build40 (including) 6.0-build40 (including)
Safeq Ysoft 6.0-build41 (including) 6.0-build41 (including)
Safeq Ysoft 6.0-build42 (including) 6.0-build42 (including)
Safeq Ysoft 6.0-build43 (including) 6.0-build43 (including)
Safeq Ysoft 6.0-build44 (including) 6.0-build44 (including)
Safeq Ysoft 6.0-build45 (including) 6.0-build45 (including)
Safeq Ysoft 6.0-build46 (including) 6.0-build46 (including)
Safeq Ysoft 6.0-build47 (including) 6.0-build47 (including)
Safeq Ysoft 6.0-build48 (including) 6.0-build48 (including)
Safeq Ysoft 6.0-build49 (including) 6.0-build49 (including)
Safeq Ysoft 6.0-build50 (including) 6.0-build50 (including)
Safeq Ysoft 6.0-build51 (including) 6.0-build51 (including)
Safeq Ysoft 6.0-build52 (including) 6.0-build52 (including)
Safeq Ysoft 6.0-build53 (including) 6.0-build53 (including)
Safeq Ysoft 6.0-build54 (including) 6.0-build54 (including)
Safeq Ysoft 6.0-build55 (including) 6.0-build55 (including)
Safeq Ysoft 6.0-build56 (including) 6.0-build56 (including)
Safeq Ysoft 6.0-build57 (including) 6.0-build57 (including)
Safeq Ysoft 6.0-build58 (including) 6.0-build58 (including)
Safeq Ysoft 6.0-build59 (including) 6.0-build59 (including)
Safeq Ysoft 6.0-build60 (including) 6.0-build60 (including)
Safeq Ysoft 6.0-build61 (including) 6.0-build61 (including)
Safeq Ysoft 6.0-build62 (including) 6.0-build62 (including)
Safeq Ysoft 6.0-build63 (including) 6.0-build63 (including)
Safeq Ysoft 6.0-build64 (including) 6.0-build64 (including)
Safeq Ysoft 6.0-build65 (including) 6.0-build65 (including)
Safeq Ysoft 6.0-build66 (including) 6.0-build66 (including)
Safeq Ysoft 6.0-build67 (including) 6.0-build67 (including)
Safeq Ysoft 6.0-build68 (including) 6.0-build68 (including)
Safeq Ysoft 6.0-build69 (including) 6.0-build69 (including)
Safeq Ysoft 6.0-build70 (including) 6.0-build70 (including)
Safeq Ysoft 6.0-build71 (including) 6.0-build71 (including)

References