Security Advisory

CVE-2021-29645

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-10-12 18:30:35

Last updated 2024-08-03 22:11:06

Assigner mitre

State PUBLISHED

Description

Hitachi JP1/IT Desktop Management 2 Agent 9 through 12 calls the SendMessageTimeoutW API with arbitrary arguments via a local pipe, leading to a local privilege escalation vulnerability. An attacker who exploits this issue could execute arbitrary code on the local system.

← Browse all CVEs View on cve.org ↗