{"uuid": "503834a9-34c3-4cf4-8d11-3eec90256646", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-20656", "type": "published-proof-of-concept", "source": "https://t.me/hackingbra/65", "content": "CVE-2024-20656 \n\nPoC for Local Privilege Escalation in the VSStandardCollectorService150 Service\n\nBlog: https://www.mdsec.co.uk/2024/01/cve-2024-20656-local-privilege-escalation-in-vsstandardcollectorservice150-service/\n\nDuring this blog post we will explore the VSStandardCollectorService150 service which used for diagnostic purposes by Visual Studio and is running in NT AUTHORITY\\SYSTEM context, and how it can be abused to perform arbitrary file DACL reset in order to escalate privileges.", "creation_timestamp": "2024-01-12T19:08:37.000000Z"}