Vulnerabilities > CVE-2018-20146 - Unspecified vulnerability in Liquidware Flexapp and Profileunity

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

liquidware

NVD

Published: 2019-02-21

Updated: 2024-11-21

Summary

An issue was discovered in Liquidware ProfileUnity before 6.8.0 with Liquidware FlexApp before 6.8.0. A local user could obtain administrator rights, as demonstrated by use of PowerShell.

Vulnerable Configurations

Part	Description	Count
Application	Liquidware Liquidware Flexapp 5.5.1637 Liquidware Flexapp 5.5.1818 Liquidware Flexapp 5.5.2111 Liquidware Flexapp 5.6.2756 Liquidware Flexapp 5.7.5093 Liquidware Flexapp 5.7.5129 Liquidware Flexapp 5.7.5158 Liquidware Flexapp 6.0.5379 Liquidware Flexapp 6.0.5409 Liquidware Flexapp 6.5.1.5833 Liquidware Flexapp 6.5.2.5896 Liquidware Flexapp 6.5.8.6159 Liquidware Flexapp 6.5.9.6136 Liquidware Flexapp 6.5.10.6310 Liquidware Flexapp 6.5.5751 Liquidware Flexapp 6.5.6037 Liquidware Flexapp 6.5.6086 Liquidware Flexapp 6.5.6116 Liquidware Flexapp 6.7.0.6422 Liquidware Flexapp 6.7.5.6663 Liquidware Flexapp 6.7.6.6684 Liquidware Flexapp 6.7.7.6701 Liquidware Profileunity 5.5.1637 Liquidware Profileunity 5.5.1818 Liquidware Profileunity 5.5.2111 Liquidware Profileunity 5.6.2756 Liquidware Profileunity 5.7.5093 Liquidware Profileunity 5.7.5129 Liquidware Profileunity 5.7.5158 Liquidware Profileunity 6.5.1.5833 Liquidware Profileunity 6.5.2.5896 Liquidware Profileunity 6.5.8.6159 Liquidware Profileunity 6.5.9.6136 Liquidware Profileunity 6.5.10.6310 Liquidware Profileunity 6.5.5751 Liquidware Profileunity 6.5.6037 Liquidware Profileunity 6.5.6086 Liquidware Profileunity 6.5.6116 Liquidware Profileunity 6.7.0.6422 Liquidware Profileunity 6.7.5.6663 Liquidware Profileunity 6.7.6.6684 Liquidware Profileunity 6.7.7.6701	42

Summary

Vulnerable Configurations

References