CVE-2021-21912

HIGH

Advantech R-SeeNet 2.4.15 - Privilege Escalation via File Replacement

Title source: llm
STIX 2.1

Description

A privilege escalation vulnerability exists in the Windows version of installation for Advantech R-SeeNet Advantech R-SeeNet 2.4.15 (30.07.2021). A specially-crafted file can be replaced in the system to escalate privileges to NT SYSTEM authority. An attacker can provide a malicious file to trigger this vulnerability.

References (1)

Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://talosintelligence.com/vulnerability_reports/TALOS-2021-1360

Scores

CVSS v3 7.8
EPSS 0.0004
EPSS Percentile 11.4%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-276
Status published
Products (1)
advantech/r-seenet 2.4.15
Published Dec 22, 2021
Tracked Since Feb 18, 2026