| عنوان | Radarr 5.28.0.10274 Incorrect Default Permissions |
|---|
| الوصف | The Radarr service binary grants Modify or write permissions to the Built-in Users group, local non-privileged users can replace or modify the executable. If the service runs under a high-privilege account (e.g., LocalSystem / SYSTEM) the modified binary may run with elevated privileges after service restart or system reboot. This yields a local privilege escalation path from ordinary user to system. |
|---|
| المصدر | ⚠️ https://github.com/lakshayyverma/CVE-Discovery/blob/main/Radarr.md |
|---|
| المستخدم | lakshay12311 (UID 91298) |
|---|
| ارسال | 28/10/2025 06:26 AM (6 أشهر منذ) |
|---|
| الاعتدال | 13/11/2025 04:28 PM (16 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 332361 [Radarr 5.28.0.10274 Service Radarr.Console.exe تجاوز الصلاحيات] |
|---|
| النقاط | 19 |
|---|