There exists an openssl.cnf privilege escalation vulnerability in ZTE Cloud PC client uSmartview
A vulnerability in the ZTE Cloud PC client uSmartview allows an attacker to execute arbitrary code locally and escalate privileges by exploiting an issue in the openssl.cnf configuration file. This could lead to unauthorized access and control of the system. The attacker needs physical access to the system to exploit this vulnerability.
There exists an openssl.cnf privilege escalation vulnerability in ZTE Cloud PC client uSmartview. An attacker can execute arbitrary code locally and escalate privileges.
Users of the ZTE Cloud PC client uSmartview are at risk of privilege escalation and arbitrary code execution, posing a medium severity threat.
Monitor & Review
Low severity — keep this CVE on your radar and patch during routine maintenance.
What should I do?
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:P/AC:H/PR:L/UI:R/S:C/C:H/I:L/A:N
0
Affected Products
1
References
CVSS:3.1/AV:P/AC:H/PR:L/UI:R/S:C/C:H/I:L/A:N
Exploitability
Impact