CVE-2021-20713

N/A

Privilege escalation vulnerability in QND Advance/Premium/Standard Ver.11.0.4i and earlier allows an attacker who can log in to the PC where the product's Windows client is installed to gain administrative privileges via unspecified vectors. As a result, sensitive information may be altered/obtained or unintended operations may be performed.

N/A

N/A

QualitySoft QND 权限许可和访问控制问题漏洞

QualitySoft QND是日本QualitySoft公司的一套IT资产管理解决方案。该方案具有外部媒体控制、设备操作记录查看和URL过滤等功能。 QND Advance 11.0.4i 存在权限许可和访问控制问题漏洞，该漏洞源于应用程序没有适当地施加安全限制，从而导致安全限制绕过和特权升级。该漏洞允许本地用户升级对系统的特权。

N/A

N/A