CNNVD-202602-1160 Information

CNNVD ID

CNNVD-202602-1160

Related CVE

CVE-2020-37160

• CNNVD Published: 2026-02-07

Description (Chinese)

Veridium SprintWork是Veridium公司的一个网页拦截软件。 Veridium SprintWork 2.3.1版本存在安全漏洞，该漏洞源于Windows系统上文件、服务和文件夹权限不安全，可能导致本地权限提升。

Description (English)

Veridium SpringWork is a web-based interception software for Veridium. Version 2.3.1 of Veridium SpringWork contains a security loophole, which stems from the unsafe access to documents, services and folders on Windows, which may lead to an increase in local privileges.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Veridium

Published

2026-02-07

Last Modified

2026-02-24

References

https://veridium.net https://veridium.net/sprintwork/ https://www.exploit-db.com/exploits/48070 https://www.vulncheck.com/advisories/sprintwork-local-privilege-escalation