CVE-2019-18349 Information

Description

HotkeyP through 4.9 r96 allows privilege escalation in the privilege function in Commands.cpp.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Reference

https://gist.github.com/matt-thibodeau/8bf16bba4c2a13978ed4e5fd08fbe2c2 https://sourceforge.net/p/hotkeyp/code/HEAD/tree/trunk/source/Commands.cpp https://sourceforge.net/p/hotkeyp/code/HEAD/tree/trunk/WhatsNew.txt

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

9.8