Goverlan Reach Console prior to 9.50, Goverlan Reach Server prior to 3.50, and Goverlan Client Agent prior to 9.20.50 have an Untrusted Search Path that leads to Command Injection and Local Privilege Escalation via DLL hijacking.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
goverlan client_agent |
||
goverlan reach_console |
||
goverlan reach_server |