First published: Fri Oct 22 2021(Updated: )
As a result of an unquoted service path vulnerability present in the Kiwi CatTools Installation Wizard, a local attacker could gain escalated privileges by inserting an executable into the path of the affected service or uninstall entry.
Credit: psirt@solarwinds.com
Affected Software | Affected Version | How to fix |
---|---|---|
Solarwinds Kiwi Cattools | <3.11.9 |
SolarWinds advises Kiwi CatTools customers to upgrade to the latest version (3.11.9) once it becomes generally available.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.