Unrated severityNVD Advisory· Published Apr 29, 2021· Updated Aug 3, 2024
CVE-2021-31776
CVE-2021-31776
Description
Aviatrix VPN Client before 2.14.14 on Windows has an unquoted search path that enables local privilege escalation to the SYSTEM user, if the machine is misconfigured to allow unprivileged users to write to directories that are supposed to be restricted to administrators.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Aviatrix/VPN Clientdescription
- Range: <2.14.14
Patches
Vulnerability mechanics
References
3- docs.aviatrix.com/Downloads/samlclient.htmlmitrex_refsource_MISC
- docs.aviatrix.com/Downloads/samlclient.htmlmitrex_refsource_MISC
- docs.aviatrix.com/HowTos/changelog.htmlmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.