CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-41139

Incorrect privilege assignment vulnerability exists in SKYSEA Client View Ver.6.010.06 to Ver.19.210.04e. If a user who can log in to the PC where the product's Windows client is installed places a specially crafted DLL file in a specific folder, arbitrary code may be executed with SYSTEM privilege.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 7.5%

CVSS Severity

CVSS v3 Score 7.8

References

https://jvn.jp/en/jp/JVN84326763/
https://www.skyseaclientview.net/news/240729_02/
https://jvn.jp/en/jp/JVN84326763/
https://www.skyseaclientview.net/news/240729_02/

Products affected by CVE-2024-41139

Skygroup » Skysea Client View » Version: 11.221.03

cpe:2.3:a:skygroup:skysea_client_view:11.221.03
Skygroup » Skysea Client View » Version: 12.200.12n

cpe:2.3:a:skygroup:skysea_client_view:12.200.12n
Skygroup » Skysea Client View » Version: 15.210.05f

cpe:2.3:a:skygroup:skysea_client_view:15.210.05f
Skygroup » Skysea Client View » Version: 16.001.01g

cpe:2.3:a:skygroup:skysea_client_view:16.001.01g

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-41139

Products

Pricing

Contact Us