Description

There is an elevation of privilege breakout vulnerability in the Windows EXE installer in Scooter Beyond Compare 4.2.0 through 4.4.2 before 4.4.3. Affected versions allow a logged-in user to run applications with elevated privileges via the Clipboard Compare tray app after installation.

Related CPE's

a

scootersoftware

beyond_compare

Vulnerable

References

https://www.scootersoftware.com/support.php?zz=kb_security_2022-01

Vendor Advisory

https://www.scootersoftware.com/support.php?zz=kb_security_2022-01

Vendor Advisory

Weaknesses

[email protected]

Primary
NVD-CWE-noinfo

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

6.7 · Medium

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2022-07-23T01:15:08.403Z

3 years ago

Last modified

2024-11-21T06:12:58.037Z

1 year ago