Unicon-Software: Security Vulnerabilities
In eLux RP 5.x before 5.5.1000 LTSR and 5.6.x before 5.6.2 CR when classic desktop mode is used, it is possible to start applications other than defined, even if the user does not have permissions to change application definitions.
CVSS Score
6.3
EPSS Score
0.0
Published
2017-09-13
The Screensavercc component in eLux RP before 5.5.0 allows attackers to bypass intended configuration restrictions and execute arbitrary commands with root privileges by inserting commands in a local configuration dialog in the control panel.
CVSS Score
9.8
EPSS Score
0.015
Published
2017-07-19