CVE-2021-35508

Published: Sep 1, 2021

Modified: Aug 4, 2024

PUBLISHED

Description

NMSAccess32.exe in TeraRecon AQNetClient 4.4.13 allows attackers to execute a malicious binary with SYSTEM privileges via a low-privileged user account. To exploit this, a low-privileged user must change the service configuration or overwrite the binary service.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://www.linkedin.com/pulse/cve-2021-35508-privilege-escalation-via-weak-windows-marshall-mba

x_refsource_MISC

https://terarecon.sharefile.com/d-s05c8b7792f354a2d8115789a02449c4a

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-35508

Description

Affected Products

References