CVE-2024-21805

Published: Mar 12, 2024

Modified: Aug 5, 2024

PUBLISHED

Description

Improper access control vulnerability exists in the specific folder of SKYSEA Client View versions from Ver.16.100 prior to Ver.19.2. If this vulnerability is exploited, an arbitrary file may be placed in the specific folder by a user who can log in to the PC where the product's Windows client is installed. In case the file is a specially crafted DLL file, arbitrary code may be executed with SYSTEM privilege.

Vendor	Product	Versions
Sky Co.,LTD.	SKYSEA Client View	affected `versions from Ver.16.100 prior to Ver.19.2`

References

https://www.skyseaclientview.net/news/240307_01/

https://jvn.jp/en/jp/JVN54451757/

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-21805

Description

Affected Products

References