CVE-2022-23862

HIGH

Y Soft SAFEQ 6 Build 53 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-23862. PoCs published by mbadanoiu.

AI-analyzed exploit summary This repository provides a writeup for CVE-2022-23862, detailing a local privilege escalation vulnerability in YSoft SafeQ due to unauthenticated JMX access on port 9696. The vulnerability allows arbitrary code execution as the 'NT Authority\System' user via JMX MLet attacks.

Description

A Local Privilege Escalation issue was discovered in Y Soft SAFEQ 6 Build 53. The SafeQ JMX service running on port 9696 is vulnerable to JMX MLet attacks. Because the service did not enforce authentication and was running under the "NT Authority\System" user, an attacker is able to use the vulnerability to execute arbitrary code and elevate to the system user.

Exploits (1)

nomisec WRITEUP 1 stars
by mbadanoiu · poc
https://github.com/mbadanoiu/CVE-2022-23862

This repository provides a writeup for CVE-2022-23862, detailing a local privilege escalation vulnerability in YSoft SafeQ due to unauthenticated JMX access on port 9696. The vulnerability allows arbitrary code execution as the 'NT Authority\System' user via JMX MLet attacks.

Classification
Writeup 90%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: YSoft SafeQ (version not specified)
No auth needed
Prerequisites: Access to TCP port 9696
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Scores

CVSS v3 7.8
EPSS 0.0049
EPSS Percentile 38.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-306
Status published
Products (1)
ysoft/safeq 6.0 build53
Published Oct 22, 2024
Tracked Since Feb 18, 2026