CVE-2018-7484

EPSS 0.19%
Veröffentlicht 26.02.2018 02:29:00
Zuletzt bearbeitet 21.11.2024 04:12:13
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

An issue was discovered in PureVPN through 5.19.4.0 on Windows. The client installation grants the Everyone group Full Control permission to the installation directory. In addition, the PureVPNService.exe service, which runs under NT Authority\SYSTEM privileges, tries to load several dynamic-link libraries using relative paths instead of the absolute path. When not using a fully qualified path, the application will first try to load the library from the directory from which the application is started. As the residing directory of PureVPNService.exe is writable to all users, this makes the application susceptible to privilege escalation through DLL hijacking.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Purevpn ≫ Purevpn Version5.19.4.0 SwPlatformwindows

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.19%	0.408

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

CWE-426 Untrusted Search Path

The product searches for critical resources using an externally-supplied search path that can point to resources that are not under the product's direct control.

http://www.defensecode.com/advisories/DC-2018-02-001-PureVPN-Windows-Privilege-Escalation.pdf

Third Party Advisory

https://www.securityfocus.com/archive/1/541803

Third Party Advisory

VDB Entry

https://nvd.nist.gov/vuln/detail/CVE-2018-7484

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2018-7484

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2018-7484

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2018-7484