Assigning CNA: Mitre
CVSS:3.1 8.2/7.4
MITRE CVE-2021-31859
Affected Versions: YSoft SAFEQ 6 FlexiSpooler versions prior to Build 57.
Attack Vector: Local
Attack Complexity: Low
Privileges Required: Low
User Interaction: Required
Scope: Changed
Impact Metrics:
Confidentiality: High
Integrity: High
Availability: High
Exploit Code Maturity: Proof of concept code
Remediation Level: Official fix
Report Confidence: Confirmed
An improper file permissions issue exists in YSoft SAFEQ FlexiSpooler at install time. A user who successfully exploited this vulnerability could gain SYSTEM level access to a local workstation. Customers are advised to upgrade to YSoft SAFEQ 6 FlexiSpooler Build 57 or later. If an upgrade is not possible at this time, customers with software support can contact Y Soft to receive a script to fix the file permissions issue.
This webpage uses cookies
Cookies enable us to tailor our services to your specific needs and help our website function better. Information
Required cookies help the website to function so that it allows basic functionality such as site navigation and access to secured sections of the website. The website will not function correctly without these cookies.
Analytical cookies allow us to monitor aggregated information on site traffic and the usage of various functions. This helps us to improve our website. Analytical cookies are set up by third parties.
Advertising Cookies
Advertising cookies are used to monitor website visitors. The aim is to display an advertisement which is relevant and interesting to an individual user and thereby more valuable to publishers and third party advertisers.
Stay up to date with the latest industry news.