Vulnerabilities
Vulnerable Software
TechSmith Snagit 19.1.0.2653 uses Object Linking and Embedding (OLE) which can allow attackers to obfuscate and embed crafted files used to escalate privileges. NOTE: This implies that Snagit's use of OLE is a security vulnerability unto itself and it is not. See reference document for more details
CVSS Score
8.8
EPSS Score
0.0
Published
2021-07-26
In TechSmith SnagIt 11.2.1 through 20.0.3, an XML External Entity (XXE) injection issue exists that would allow a local attacker to exfiltrate data under the local Administrator account.
CVSS Score
5.5
EPSS Score
0.001
Published
2020-05-08


Contact Us

Shodan ® - All rights reserved