Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 19/07/2019 Updated: 18/04/2022

CVSS v2 Base Score: 4.4 | Impact Score: 6.4 | Exploitability Score: 3.4

CVSS v3 Base Score: 7 | Impact Score: 5.9 | Exploitability Score: 1

VMScore: 392

Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P

Code42 Enterprise and Crashplan for Small Business Client version 6.7 prior to 6.7.5, 6.8 prior to 6.8.8, and 6.9 prior to 6.9.4 allows eval injection. A proxy auto-configuration file, crafted by a lesser privileged user, may be used to execute arbitrary code at a higher privilege as the service user.

Vulnerable Product	Search on Vulmon	Subscribe to Product
code42 code42 for enterprise
code42 crashplan for small business

CWE-94 https://bordplate.no/blog/en/post/crashplan-privilege-escalation/https://code42.com/r/support/CVE-2019-11552 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2019-11552

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect