High severity8.8NVD Advisory· Published Mar 26, 2024· Updated Apr 15, 2026
CVE-2023-50702
CVE-2023-50702
Description
Sikka SSCWindowsService 5 2023-09-14 executes a program as LocalSystem but allows full control by low-privileged users (and low-privileged users have write access to %PROGRAMDATA%\SSCService). Consequently, low-privileged users can execute arbitrary code as LocalSystem.
Affected products
1- Range: = 2023-09-14 build
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.