Otris: >> Update Manager >> 1.2.1.0 Security Vulnerabilities
otris Update Manager 1.2.1.0 allows local users to achieve SYSTEM access via unauthenticated calls to exposed interfaces over a .NET named pipe. A remote attack may be possible as well, by leveraging WsHTTPBinding for HTTP traffic on TCP port 9000.
CVSS Score
7.8
EPSS Score
0.0
Published
2022-03-10