CVE-2024-41143

HIGH

Skygroup Skysea Client View < 19.210.04e - Origin Validation Error

Title source: rule

Description

Origin validation error vulnerability exists in SKYSEA Client View Ver.3.013.00 to Ver.19.210.04e. If this vulnerability is exploited, an arbitrary process may be executed with SYSTEM privilege by a user who can log in to the PC where the product's Windows client is installed.

References (2)

[Third Party Advisory] https://jvn.jp/en/jp/JVN84326763/

[Vendor Advisory] https://www.skyseaclientview.net/news/240729_02/

Scores

CVSS v3 7.8

EPSS 0.0008

EPSS Percentile 22.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-346

Status published

Products (1)

skygroup/skysea_client_view 3.013.00 - 19.210.04e

Published Jul 29, 2024

Tracked Since Feb 18, 2026