Exploitation Summary
EIP tracks 1 public exploit for CVE-2022-26503. PoCs published by sinsinology.
AI-analyzed exploit summary The repository provides a detailed analysis of CVE-2022-26503, a local privilege escalation vulnerability in Veeam Agent for Microsoft Windows due to improper deserialization. It includes patch analysis, process inspection, and a proof-of-concept demonstration.
Description
Deserialization of untrusted data in Veeam Agent for Windows 2.0, 2.1, 2.2, 3.0.2, 4.x, and 5.x allows local users to run arbitrary code with local system privileges.
Exploits (1)
The repository provides a detailed analysis of CVE-2022-26503, a local privilege escalation vulnerability in Veeam Agent for Microsoft Windows due to improper deserialization. It includes patch analysis, process inspection, and a proof-of-concept demonstration.
References (2)
Scores
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H