{"uuid": "d87c949e-2bf9-4f44-bdc6-443800fec5b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42052", "type": "seen", "source": "https://t.me/HackerArsenal/45", "content": "\u203c\ufe0f CVE-2024-42052 \u203c\ufe0f\n\nThe MSI installer for Splashtop Streamer for Windows before 3.5.8.0 uses a temporary folder with weak permissions during installation. A local user can exploit this to escalate privileges to SYSTEM by placing a wevtutil.exe file in the folder.\n\n\ud83d\udcd6 Read more.\n\n\ud83d\udd17 Via \"National Vulnerability Database\"\n\n----------\n\ud83d\udc41\ufe0f Seen on @hackerarsenal", "creation_timestamp": "2024-07-28T13:11:14.000000Z"}