CVE-2024-0833 – Privilege Elevation via Telerik Test Studio

https://notcve.org/view.php?id=CVE-2024-0833

31 Jan 2024 — In Telerik Test Studio versions prior to v2023.3.1330, a privilege elevation vulnerability has been identified in the applications installer component. In an environment where an existing Telerik Test Studio install is present, a lower privileged user has the ability to manipulate the installation package to elevate their privileges on the underlying operating system. En las versiones de Telerik Test Studio anteriores a la v2023.3.1330, se identificó una vulnerabilidad de elevación de privilegios en el comp... • https://docs.telerik.com/teststudio/knowledge-base/product-notices-kb/legacy-installer-vulnerability • CWE-269: Improper Privilege Management CWE-276: Incorrect Default Permissions •