CVE-2021-45891

High

An issue was discovered in Softwarebuero Zauner ARC 4.2.0.4., that allows attackers to escalate privileges within the application, since…

mitre·CWE-669·Published 2022-04-05

CVSS

8.8

EPSS

0.01

KEV

Exploits

cve.orgen

197 chars

An issue was discovered in Softwarebuero Zauner ARC 4.2.0.4., that allows attackers to escalate privileges within the application, since all permission checks are done client-side, not server-side.

NVDen

197 chars

An issue was discovered in Softwarebuero Zauner ARC 4.2.0.4., that allows attackers to escalate privileges within the application, since all permission checks are done client-side, not server-side.

Se ha detectado un problema en Softwarebuero Zauner ARC 4.2.0.4., que permite a atacantes escalar privilegios dentro de la aplicación, ya que todas las comprobaciones de permisos se hacen del lado del cliente, no del lado del servidor

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	6.5	8.0	6.4	AV:N/AC:L/Au:S/C:P/I:P/A:P
3.1	Primary	NVD	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H