CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-18252

An issue was discovered in CapMon Access Manager 5.4.1.1005. CALRunElevated.exe provides "NT AUTHORITY\SYSTEM" access to unprivileged users via the --system option.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 11.3%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 7.2

References

https://improsec.com/tech-blog/cam1
https://improsec.com/tech-blog/cam1

Products affected by CVE-2018-18252

Capmon » Access Manager » Version: 5.4.1.1005

cpe:2.3:a:capmon:access_manager:5.4.1.1005

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-18252

Products

Pricing

Contact Us