Vulnerabilities > Solarwinds > Kiwi Cattools

DATE CVE VULNERABILITY TITLE RISK
2021-10-22 CVE-2021-35230 Path Traversal vulnerability in Solarwinds Kiwi Cattools 3.6.0(Serviceedition)
As a result of an unquoted service path vulnerability present in the Kiwi CatTools Installation Wizard, a local attacker could gain escalated privileges by inserting an executable into the path of the affected service or uninstall entry.
local
low complexity
solarwinds CWE-22
6.7