Permissions, Privileges, and Access Controls in Adaware Protect

#VU64551 Permissions, Privileges, and Access Controls in Adaware Protect

Published: 2022-06-21

Vulnerability identifier: #VU64551

Vulnerability risk: Low

CVSSv3.1: 7.1 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:U/RC:C]

CVE-ID: CVE-2022-31464

CWE-ID: CWE-264

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Adaware Protect
Client/Desktop applications / Antivirus software/Personal firewalls

Vendor: Adaware

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to insecure permissions configuration. A local user can change the service binary path and gain elevated privileges on the system.

Mitigation
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Vulnerable software versions

Adaware Protect: 1.2.495.4325

External links
http://r0h1rr1m.medium.com/adaware-protect-local-privilege-escalation-through-insecure-service-permissions-44d0eeb6c933
http://www.adaware.com/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Privilege escalation in Adaware Protect