Security Advisory

CVE-2023-37243

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-31 14:34:03

Last updated 2024-09-05 17:45:07

Assigner Google

State PUBLISHED

Description

The C:WindowsTempAgent.Package.AvailabilityAgent.Package.Availability.exe file is automatically launched as SYSTEM when the system reboots. Since the C:WindowsTempAgent.Package.Availability folder inherits permissions from C:WindowsTemp and Agent.Package.Availability.exe is susceptible to DLL hijacking, standard users can write a malicious DLL to it and elevate their privileges.

← Browse all CVEs View on cve.org ↗