Security Advisory

CVE-2019-12162

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-07-23 14:07:52

Last updated 2024-08-04 23:10:30

Assigner mitre

State PUBLISHED

Description

Upwork Time Tracker 5.2.2.716 doesnt verify the SHA256 hash of the downloaded program update before running it, which could lead to code execution or local privilege escalation by replacing the original update.exe.

← Browse all CVEs View on cve.org ↗