Search

Find a vulnerability

Search criteria

    2 vulnerabilities found for licensing_services by autodesk

    CVE-2021-27032 (GCVE-0-2021-27032)

    Vulnerability from nvd – Published: 2021-05-28 11:30 – Updated: 2024-08-03 20:40
    VLAI
    Summary
    Autodesk Licensing Installer was found to be vulnerable to privilege escalation issues. A malicious user with limited privileges could run any number of tools on a system to identify services that are configured with weak permissions and are running under elevated privileges. These weak permissions could allow all users on the operating system to modify the service configuration and take ownership of the service.
    Severity
    No CVSS data available.
    CWE
    • Privilege Escalation
    Assigner
    Impacted products
    Vendor Product Version
    n/a Autodesk Licensing Installer Affected: 9.0.1.1462.100
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T20:40:47.243Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://knowledge.autodesk.com/search-result/caas/downloads/content/autodesk-licensing-service-download.html"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0002%3B"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0002"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Autodesk Licensing Installer",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "9.0.1.1462.100"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Autodesk Licensing Installer was found to be vulnerable to privilege escalation issues. A malicious user with limited privileges could run any number of tools on a system to identify services that are configured with weak permissions and are running under elevated privileges. These weak permissions could allow all users on the operating system to modify the service configuration and take ownership of the service."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Privilege Escalation",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-06-16T14:55:19.000Z",
            "orgId": "7e40ea87-bc65-4944-9723-dd79dd760601",
            "shortName": "autodesk"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://knowledge.autodesk.com/search-result/caas/downloads/content/autodesk-licensing-service-download.html"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0002%3B"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0002"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@autodesk.com",
              "ID": "CVE-2021-27032",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Autodesk Licensing Installer",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "9.0.1.1462.100"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Autodesk Licensing Installer was found to be vulnerable to privilege escalation issues. A malicious user with limited privileges could run any number of tools on a system to identify services that are configured with weak permissions and are running under elevated privileges. These weak permissions could allow all users on the operating system to modify the service configuration and take ownership of the service."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Privilege Escalation"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://knowledge.autodesk.com/search-result/caas/downloads/content/autodesk-licensing-service-download.html",
                  "refsource": "MISC",
                  "url": "https://knowledge.autodesk.com/search-result/caas/downloads/content/autodesk-licensing-service-download.html"
                },
                {
                  "name": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0002;",
                  "refsource": "MISC",
                  "url": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0002;"
                },
                {
                  "name": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0002",
                  "refsource": "MISC",
                  "url": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0002"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "7e40ea87-bc65-4944-9723-dd79dd760601",
        "assignerShortName": "autodesk",
        "cveId": "CVE-2021-27032",
        "datePublished": "2021-05-28T11:30:53.000Z",
        "dateReserved": "2021-02-09T00:00:00.000Z",
        "dateUpdated": "2024-08-03T20:40:47.243Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-27032 (GCVE-0-2021-27032)

    Vulnerability from cvelistv5 – Published: 2021-05-28 11:30 – Updated: 2024-08-03 20:40
    VLAI
    Summary
    Autodesk Licensing Installer was found to be vulnerable to privilege escalation issues. A malicious user with limited privileges could run any number of tools on a system to identify services that are configured with weak permissions and are running under elevated privileges. These weak permissions could allow all users on the operating system to modify the service configuration and take ownership of the service.
    Severity
    No CVSS data available.
    CWE
    • Privilege Escalation
    Assigner
    Impacted products
    Vendor Product Version
    n/a Autodesk Licensing Installer Affected: 9.0.1.1462.100
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T20:40:47.243Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://knowledge.autodesk.com/search-result/caas/downloads/content/autodesk-licensing-service-download.html"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0002%3B"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0002"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Autodesk Licensing Installer",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "9.0.1.1462.100"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Autodesk Licensing Installer was found to be vulnerable to privilege escalation issues. A malicious user with limited privileges could run any number of tools on a system to identify services that are configured with weak permissions and are running under elevated privileges. These weak permissions could allow all users on the operating system to modify the service configuration and take ownership of the service."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Privilege Escalation",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-06-16T14:55:19.000Z",
            "orgId": "7e40ea87-bc65-4944-9723-dd79dd760601",
            "shortName": "autodesk"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://knowledge.autodesk.com/search-result/caas/downloads/content/autodesk-licensing-service-download.html"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0002%3B"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0002"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@autodesk.com",
              "ID": "CVE-2021-27032",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Autodesk Licensing Installer",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "9.0.1.1462.100"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Autodesk Licensing Installer was found to be vulnerable to privilege escalation issues. A malicious user with limited privileges could run any number of tools on a system to identify services that are configured with weak permissions and are running under elevated privileges. These weak permissions could allow all users on the operating system to modify the service configuration and take ownership of the service."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Privilege Escalation"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://knowledge.autodesk.com/search-result/caas/downloads/content/autodesk-licensing-service-download.html",
                  "refsource": "MISC",
                  "url": "https://knowledge.autodesk.com/search-result/caas/downloads/content/autodesk-licensing-service-download.html"
                },
                {
                  "name": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0002;",
                  "refsource": "MISC",
                  "url": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0002;"
                },
                {
                  "name": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0002",
                  "refsource": "MISC",
                  "url": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0002"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "7e40ea87-bc65-4944-9723-dd79dd760601",
        "assignerShortName": "autodesk",
        "cveId": "CVE-2021-27032",
        "datePublished": "2021-05-28T11:30:53.000Z",
        "dateReserved": "2021-02-09T00:00:00.000Z",
        "dateUpdated": "2024-08-03T20:40:47.243Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }