Barracuda Network Access Client before 5.2.2 creates a Temporary File in a Directory with Insecure Permissions. This file is executed with SYSTEM privileges when an unprivileged user performs a repair operation.
References
Link | Resource |
---|---|
https://github.com/mandiant/Vulnerability-Disclosures/blob/master/MNDT-2021-0010/MNDT-2021-0010.md | Third Party Advisory |
Configurations
History
No history.
Information
Published : 2021-12-01 23:15
Updated : 2024-02-28 18:48
NVD link : CVE-2021-42711
Mitre link : CVE-2021-42711
CVE.ORG link : CVE-2021-42711
JSON object : View
Products Affected
barracuda
- network_access_client
CWE
CWE-276
Incorrect Default Permissions