CVE-2024-42052 | Splashtop Streamer up to 3.5.7.x on Windows Installation wevtutil.exe temp file

Posted by Angelo Barbosa | Jul 28, 2024 | CVE

A vulnerability, which was classified as critical, was found in Splashtop Streamer up to 3.5.7.x on Windows. Affected is an unknown function of the file wevtutil.exe of the component Installation Handler. The manipulation leads to creation of temporary file in directory with insecure permissions.

This vulnerability is traded as CVE-2024-42052. An attack has to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-42052 | Splashtop Streamer up to 3.5.7.x on Windows Installation wevtutil.exe temp file

Related Posts

CVE-2023-28807 | Zscaler ZIA prior 6.2r.290 SNI certificate validation

CVE-2024-7356 | Zephyr Project Manager Plugin up to 3.3.100 on WordPress filename cross site scripting

CVE-2024-39518 | Juniper Networks Junos OS up to 23.2R1 Telemetry Sensor Process heap-based overflow (JSA82982)

CVE-2024-3520 | Country State City Dropdown CF7 Plugin up to 2.7.1 on WordPress authorization