CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-45883

A privilege escalation vulnerability exists within the Qumu Multicast Extension v2 before 2.0.63 for Windows. When a standard user triggers a repair of the software, a pop-up window opens with SYSTEM privileges. Standard users may use this to gain arbitrary code execution as SYSTEM.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 20.9%

CVSS Severity

CVSS v3 Score 7.8

References

https://hackandpwn.com/disclosures/CVE-2023-45883.pdf
https://www.vidyo.com/enterprise-video-management/qumu
https://hackandpwn.com/disclosures/CVE-2023-45883.pdf
https://www.vidyo.com/enterprise-video-management/qumu

Products affected by CVE-2023-45883

Enghouse » Qumu » Version: 2.0.0

cpe:2.3:a:enghouse:qumu:2.0.0
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-45883

Products

Pricing

Contact Us