High severity8.8NVD Advisory· Published Sep 8, 2018· Updated Jun 17, 2026
CVE-2018-16715
CVE-2018-16715
Description
An issue was discovered in Absolute Software CTES Windows Agent through 1.0.0.1479. The security permissions on the %ProgramData%\CTES folder and sub-folders may allow write access to low-privileged user accounts. This allows unauthorized replacement of service program executable (EXE) or dynamically loadable library (DLL) files, causing elevated (SYSTEM) user access. Configuration control files or data files under this folder could also be similarly modified to affect service process behavior.
Affected products
1- Range: <=1.0.0.1479
Patches
Vulnerability mechanics
References
1- community.absolute.com/s/article/Absolute-Security-Bulletin-ASB1nvdVendor Advisory
News mentions
0No linked articles in our index yet.