1 results (0.000 seconds)
CVSS: 6.6EPSS: 0%CPEs: 1EXPL: 0
CVSS: 6.6EPSS: 0%CPEs: 1EXPL: 0CVE-2019-13142
https://notcve.org/view.php?id=CVE-2019-13142
09 Jul 2019 — The RzSurroundVADStreamingService (RzSurroundVADStreamingService.exe) in Razer Surround 1.1.63.0 runs as the SYSTEM user using an executable located in %PROGRAMDATA%\Razer\Synapse\Devices\Razer Surround\Driver\. The DACL on this folder allows any user to overwrite contents of files in this folder, resulting in Elevation of Privilege. La función RzSurroundVADStreamingService (en el archivo RzSurroundVADStreamingService.exe) en Razer Surround versión 1.1.63.0, ejecutándose como usuario System usando un ejecut... • https://posts.specterops.io/cve-2019-13142-razer-surround-1-1-63-0-eop-f18c52b8be0c • CWE-732: Incorrect Permission Assignment for Critical Resource •