Vulnerability Details CVE-2023-29838
Insecure Permission vulnerability found in Botkind/Siber Systems SyncApp v.19.0.3.0 allows a local attacker toe escalate privileges via the SyncService.exe file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 7.2%
CVSS Severity
CVSS v3 Score 7.8
References
- https://github.com/IthacaLabs/Botkind/blob/main/Botkind_SyncApp/WeakServicePermissions_InsecureServiceExecutable_CVE-2023-29838.txt
- https://github.com/IthacaLabs/Botkind/tree/main/Botkind_SyncApp
- https://github.com/IthacaLabs/Botkind/blob/main/Botkind_SyncApp/WeakServicePermissions_InsecureServiceExecutable_CVE-2023-29838.txt
- https://github.com/IthacaLabs/Botkind/tree/main/Botkind_SyncApp
Products affected by CVE-2023-29838
-
cpe:2.3:a:allwaysync:allwaysync:19.0.3.0