- Description
- The NetCloud Exchange client for Windows, version 1.110.50, contains an insecure file and folder permissions vulnerability. A normal (non-admin) user could exploit the weakness in file and folder permissions to escalate privileges, execute arbitrary code and maintain persistence on the compromised machine. It has been identified that full control permissions exist on the ‘Everyone’ group (i.e. any user who has local access to the operating system regardless of their privileges).
- Source
- cve-coordination@incibe.es
- NVD status
- Received
CVSS 3.1
- Type
- Secondary
- Base score
- 8.8
- Impact score
- 6
- Exploitability score
- 2
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
- Severity
- HIGH
- cve-coordination@incibe.es
- CWE-276
- Hype score
- Not currently trending
CVE Alert: CVE-2024-11969 - https://t.co/kOnW7abucs #OSINT #ThreatIntel #CyberSecurity #cve_2024_11969
@RedPacketSec
29 Nov 2024
5 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2024-11969: HIGH] NetCloud Exchange client for Windows v1.110.50 has a critical security flaw allowing unauthorized users to escalate privileges and execute malicious code due to insecure file permissions on...#cybersecurity,#vulnerability https://t.co/9bN2rFjBtb https://t.c
@CveFindCom
28 Nov 2024
10 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-11969 The NetCloud Exchange client for Windows, version 1.110.50, contains an insecure file and folder permissions vulnerability. A normal (non-admin) user could exploit th… https://t.co/DLBtECLxwV
@CVEnew
28 Nov 2024
400 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes