Permissions, Privileges, and Access Controls in Printix Secure Cloud Print Management - CVE-2022-35167
Published: August 30, 2022
Vulnerability identifier: #VU66834
CSH Severity: Low
CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2022-35167
CWE-ID: CWE-264
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
Printix Secure Cloud Print Management
Printix Secure Cloud Print Management
Software vendor:
Printix
Printix
Description
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to insecure permissions in registry keys, which leads to security restrictions bypass and privilege escalation.
Remediation
Install updates from vendor's website.