Unrated severityNVD Advisory· Published Oct 25, 2021· Updated Sep 16, 2024
Unquoted Path (SMB Login) Vulnerability
CVE-2021-35231
Description
As a result of an unquoted service path vulnerability present in the Kiwi Syslog Server Installation Wizard, a local attacker could gain escalated privileges by inserting an executable into the path of the affected service or uninstall entry. Example vulnerable path: "Computer\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Kiwi Syslog Server\Parameters\Application".
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: 9.7.2 and previous versions
Patches
Vulnerability mechanics
References
2- documentation.solarwinds.com/en/success_center/kss/content/release_notes/kss_9-8_release_notes.htmmitrex_refsource_MISC
- www.solarwinds.com/trust-center/security-advisories/cve-2021-35231mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.