Security Advisory

CVE-2021-31776

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-04-29 00:03:56

Last updated 2024-08-03 23:03:33

Assigner mitre

State PUBLISHED

Description

Aviatrix VPN Client before 2.14.14 on Windows has an unquoted search path that enables local privilege escalation to the SYSTEM user, if the machine is misconfigured to allow unprivileged users to write to directories that are supposed to be restricted to administrators.

← Browse all CVEs View on cve.org ↗