English
Français
Light
Dark
System

Alert System

Stay informed at all times
Create an account Open a free account Login Manage your alerts

Cisco Umbrella Enterprise Roaming Client 2.0.168

CPE Details

Cisco Umbrella Enterprise Roaming Client 2.0.168
cisco
umbrella_enterprise_roaming_client
2.0.168
2019-12-10 13:29 +00:00
2019-12-10 13:29 +00:00
CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.
Alert management

CPE Name: cpe:2.3:a:cisco:umbrella_enterprise_roaming_client:2.0.168:*:*:*:*:*:*:*

Informations

Vendor

cisco

Product

umbrella_enterprise_roaming_client

Version

2.0.168

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2018-0437 2018-09-04 22:00 +00:00 A vulnerability in the Cisco Umbrella Enterprise Roaming Client (ERC) could allow an authenticated, local attacker to elevate privileges to Administrator. To exploit the vulnerability, the attacker must authenticate with valid local user credentials. This vulnerability is due to improper implementation of file system permissions, which could allow non-administrative users to place files within restricted directories. An attacker could exploit this vulnerability by placing an executable file within the restricted directory, which when executed by the ERC client, would run with Administrator privileges.
7.8
HIGH
CVE-2018-0438 2018-09-04 22:00 +00:00 A vulnerability in the Cisco Umbrella Enterprise Roaming Client (ERC) could allow an authenticated, local attacker to elevate privileges to Administrator. To exploit the vulnerability, the attacker must authenticate with valid local user credentials. This vulnerability is due to improper implementation of file system permissions, which could allow non-administrative users to place files within restricted directories. An attacker could exploit this vulnerability by placing an executable file within the restricted directory, which when executed by the ERC client, would run with Administrator privileges.
7.8
HIGH

More information
Click on the button to the left (OFF), to authorize the inscription of cookie improving the functionalities of the site. Click on the button to the left (Accept all), to unauthorize the inscription of cookie improving the functionalities of the site.