Security Advisory

CVE-2024-27674

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-04-03 00:00:00

Last updated 2024-10-28 13:57:54

Assigner mitre

State PUBLISHED

Description

Macro Expert through 4.9.4 allows BUILTINUsers:(OI)(CI)(M) access to the "%PROGRAMFILES(X86)%GrassSoftMacro Expert" folder and thus an unprivileged user can escalate to SYSTEM by replacing the MacroService.exe binary.

← Browse all CVEs View on cve.org ↗