nvd-json-data-feeds/CVE-2021/CVE-2021-355xx/CVE-2021-35508.json

{
  "id": "CVE-2021-35508",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2021-09-01T14:15:07.813",
  "lastModified": "2022-07-12T17:42:04.277",
  "vulnStatus": "Analyzed",
  "descriptions": [
    {
      "lang": "en",
      "value": "NMSAccess32.exe in TeraRecon AQNetClient 4.4.13 allows attackers to execute a malicious binary with SYSTEM privileges via a low-privileged user account. To exploit this, a low-privileged user must change the service configuration or overwrite the binary service."
    },
    {
      "lang": "es",
      "value": "NMSAccess32.exe en TeraRecon AQNetClient versi\u00f3n 4.4.13, permite a atacantes ejecutar un binario malicioso con privilegios SYSTEM por medio de una cuenta de usuario con pocos privilegios. Para explotar esto, un usuario con pocos privilegios debe cambiar la configuraci\u00f3n del servicio o sobrescribir el servicio binario.\nNMSAccess32.exe en TeraRecon AQNetClient versi\u00f3n 4.4.13, permite a atacantes ejecutar un binario malicioso con privilegios SYSTEM por medio de una cuenta de usuario con pocos privilegios. Para explotar esto, un usuario con pocos privilegios debe cambiar la configuraci\u00f3n del servicio o sobrescribir el servicio binario"
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "LOW",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "availabilityImpact": "HIGH",
          "baseScore": 8.8,
          "baseSeverity": "HIGH"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 5.9
      }
    ],
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:N/AC:M/Au:S/C:C/I:C/A:C",
          "accessVector": "NETWORK",
          "accessComplexity": "MEDIUM",
          "authentication": "SINGLE",
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 8.5
        },
        "baseSeverity": "HIGH",
        "exploitabilityScore": 6.8,
        "impactScore": 10.0,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": false,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-732"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:terarecon:aquariusnet:4.4.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "64508F5B-B224-44FA-819B-9B735810FD91"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://terarecon.sharefile.com/d-s05c8b7792f354a2d8115789a02449c4a",
      "source": "cve@mitre.org",
      "tags": [
        "Product",
        "Third Party Advisory"
      ]
    },
    {
      "url": "https://www.linkedin.com/pulse/cve-2021-35508-privilege-escalation-via-weak-windows-marshall-mba",
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ]
    }
  ]
}