| 标题 | Topaz SERVCore® Teller Installer V2.14.0-RC2 [2.14.1] Local Privilege Escalation |
|---|
| 描述 | A local privilege escalation vulnerability was identified in the installation routine of SERVCore® Teller version V2.14.0-RC2 [2.14.1]. The issue is caused by improper permission handling of the service binary installation directory, allowing unprivileged users to replace the service binary with a malicious executable, which is then executed with SYSTEM privileges upon reboot. |
|---|
| 来源 | ⚠️ https://raw.githubusercontent.com/securityadvisories/Security-Advisories/refs/heads/main/Advisories/Blaze%20Information%20Security%20-%20Local%20Privilege%20Escalation%20via%20Insecure%20Directory%20Permissions%20in%20SERVCore%20Teller%20Installer.txt |
|---|
| 用户 | Anonymous User |
|---|
| 提交 | 2025-09-09 20時57分 (8 月前) |
|---|
| 管理 | 2025-09-25 07時44分 (15 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 325811 [Topaz SERVCore Teller 2.14.0-RC2/2.14.1 Installer SERVCoreTeller_2.0.40D.msi 权限提升] |
|---|
| 积分 | 19 |
|---|