Cisco Umbrella Enterprise Roaming Client vulnerabilities
2 known vulnerabilities affecting cisco/umbrella_enterprise_roaming_client.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2018-0437P3HIGHCVSS 7.8PoCfixed in 2.1.1182018-10-05
CVE-2018-0437 [HIGH] CWE-264 CVE-2018-0437: A vulnerability in the Cisco Umbrella Enterprise Roaming Client (ERC) could allow an authenticated,
A vulnerability in the Cisco Umbrella Enterprise Roaming Client (ERC) could allow an authenticated, local attacker to elevate privileges to Administrator. To exploit the vulnerability, the attacker must authenticate with valid local user credentials. This vulnerability is due to improper implementation of file system permissions, which could allow non-ad
nvd
CVE-2018-0438P3HIGHCVSS 7.8PoCfixed in 2.1.1272018-10-05
CVE-2018-0438 [HIGH] CWE-20 CVE-2018-0438: A vulnerability in the Cisco Umbrella Enterprise Roaming Client (ERC) could allow an authenticated,
A vulnerability in the Cisco Umbrella Enterprise Roaming Client (ERC) could allow an authenticated, local attacker to elevate privileges to Administrator. To exploit the vulnerability, the attacker must authenticate with valid local user credentials. This vulnerability is due to improper implementation of file system permissions, which could allow non-adm
nvd