CVE-2019-17066
First published: Mon May 18 2020(Updated: )
In Ivanti WorkSpace Control before 10.4.40.0, a user can elevate rights on the system by hijacking certain user registries. This is possible because pwrgrid.exe first checks the Current User registry hives (HKCU) when starting an application with elevated rights.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ivanti Workspace Control | <10.4.40.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2019-17066?
CVE-2019-17066 is a vulnerability where a user can elevate rights on the system by hijacking certain user registries in Ivanti WorkSpace Control before version 10.4.40.0.
How does CVE-2019-17066 work?
CVE-2019-17066 works by exploiting the fact that pwrgrid.exe checks the Current User registry hives (HKCU) when starting an application with elevated rights.
What is the severity of CVE-2019-17066?
CVE-2019-17066 has a severity rating of 7.8 (high).
How can I fix CVE-2019-17066?
To fix CVE-2019-17066, update Ivanti WorkSpace Control to version 10.4.40.0 or later.
Where can I find more information about CVE-2019-17066?
You can find more information about CVE-2019-17066 at the following link: [https://forums.ivanti.com/s/article/A-locally-authenticated-user-with-low-privileges-can-acquire-admin-privileges-by-hijacking-certain-user-registry-entries](https://forums.ivanti.com/s/article/A-locally-authenticated-user-with-low-privileges-can-acquire-admin-privileges-by-hijacking-certain-user-registry-entries).
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/description
- agent/weakness
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/ivanti
- canonical/ivanti workspace control