CVE

CVE-2021-31771

admin

CVE-2021-31771

Splinterware System Scheduler Professional version 5.30 is subject to insecure folders permissions issue impacting where the service ‘WindowsScheduler’ calls its executable. This allow a non-privileged user to execute arbitrary code with elevated privileges (system level privileges as "nt authoritysystem") since the service runs as Local System.

Source: CVE-2021-31771

Exit mobile version