Vulnerability Description
An unauthenticated attacker with physical access to a computer with NetSetMan Pro before 5.0 installed, that has the pre-logon profile switch button within the Windows logon screen enabled, is able to drop to an administrative shell and execute arbitrary commands as SYSTEM via the "save log to file" feature. To accomplish this, the attacker can navigate to cmd.exe.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Netsetman | Netsetman | < 5.0 |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/163097/NetSetManPro-4.7.2-Privilege-EscalatExploitThird Party AdvisoryVDB Entry
- http://seclists.org/fulldisclosure/2021/Jun/17ExploitMailing ListThird Party Advisory
- https://www.netsetman.comVendor Advisory
- https://www.secuvera.deThird Party Advisory
- https://www.secuvera.de/advisories/secuvera-SA-2021-01.txtExploitThird Party Advisory
- http://packetstormsecurity.com/files/163097/NetSetManPro-4.7.2-Privilege-EscalatExploitThird Party AdvisoryVDB Entry
- http://seclists.org/fulldisclosure/2021/Jun/17ExploitMailing ListThird Party Advisory
- https://www.netsetman.comVendor Advisory
- https://www.secuvera.deThird Party Advisory
- https://www.secuvera.de/advisories/secuvera-SA-2021-01.txtExploitThird Party Advisory
FAQ
What is CVE-2021-34546?
CVE-2021-34546 is a vulnerability with a CVSS score of 6.8 (MEDIUM). An unauthenticated attacker with physical access to a computer with NetSetMan Pro before 5.0 installed, that has the pre-logon profile switch button within the Windows logon screen enabled, is able to...
How severe is CVE-2021-34546?
CVE-2021-34546 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-34546?
Check the references section above for vendor advisories and patch information. Affected products include: Netsetman Netsetman.