Vulnerabilities (CVE)

Filtered by vendor Itarian Subscribe
Filtered by product Endpoint Manager Communication Client
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-25153 1 Itarian 1 Endpoint Manager Communication Client 2024-11-21 7.2 HIGH 7.8 HIGH
The ITarian Endpoint Manage Communication Client, prior to version 6.43.41148.21120, is compiled using insecure OpenSSL settings. Due to this setting, a malicious actor with low privileges access to a system can escalate his privileges to SYSTEM abusing an insecure openssl.conf lookup.