Product

Kite 4.2.0.1 U1

1 brief RSS

Kite Unquoted Service Path Vulnerability (CVE-2020-37247)

Kite 4.2.0.1 U1 contains an unquoted service path vulnerability (CVE-2020-37247) in the KiteService Windows service that allows local attackers to escalate privileges by placing a malicious executable in a directory due to the unquoted service path.

Kite 4.2.0.1 U1 privilege-escalation unquoted service path cve-2020-37247 windows

2r 1t 1c 5m ago