CVE-2021-45891
8.8HIGHAn issue was discovered in Softwarebuero Zauner ARC 4.2.0.4., that allows attackers to escalate privileges within the application, since all permission checks are done client-side, not server-side.
Published: 4/5/2022Updated: 11/21/2024
Description
An issue was discovered in Softwarebuero Zauner ARC 4.2.0.4., that allows attackers to escalate privileges within the application, since all permission checks are done client-side, not server-side.
AI AnalysisPowered by AI
Affected Products
zaunerarc
4.2.0.4
References
- https://syss.deThird Party Advisory
- https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2021-063.txtExploitThird Party Advisory
- https://syss.deThird Party Advisory
- https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2021-063.txtExploitThird Party Advisory