CVE-2022-27088
First published: Mon Apr 11 2022(Updated: )
Ivanti DSM Remote <= 6.3.1.1862 is vulnerable to an unquoted service path allowing local users to launch processes with elevated privileges.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ivanti DSM Remote | <=6.3.1.1862 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Ivanti DSM Remote vulnerability?
The vulnerability ID for this Ivanti DSM Remote vulnerability is CVE-2022-27088.
What is the severity of CVE-2022-27088?
The severity of CVE-2022-27088 is high, with a severity value of 7.8.
What is the description of CVE-2022-27088?
CVE-2022-27088 is a vulnerability in Ivanti DSM Remote <= 6.3.1.1862, which allows local users to launch processes with elevated privileges by exploiting an unquoted service path.
How can local users exploit CVE-2022-27088?
Local users can exploit CVE-2022-27088 by leveraging the unquoted service path vulnerability in Ivanti DSM Remote <= 6.3.1.1862 to launch processes with elevated privileges.
Is there a fix available for CVE-2022-27088?
At the moment, there is no available fix for CVE-2022-27088. It is recommended to follow the vendor's security advisories for updates and patches.
- collector/nvd-index
- agent/author
- agent/severity
- agent/references
- agent/weakness
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/ivanti
- canonical/ivanti dsm remote
- version/ivanti dsm remote/6.3.1.1862