Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Sytech Subscribe
Filtered by product Xlreporter
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-13549 1 Sytech 1 Xlreporter 2022-10-06 7.2 HIGH 7.8 HIGH
An exploitable local privilege elevation vulnerability exists in the file system permissions of Sytech XL Reporter v14.0.1 install directory. Depending on the vector chosen, an attacker can overwrite service executables and execute arbitrary code with privileges of user set to run the service or replace other files within the installation folder, which would allow for local privilege escalation.