Threat Encyclopedia

Splashstop software vulnerabilities

description-logoDescription

Splashtop Software Updater on Windows has insecure permissions on the configuration file and named pipe allow for local privilege escalation to NT AUTHORITY/SYSTEM, by forcing a permission change to any Splashtop files and directories, with resultant DLL hijacking.

affected-products-logoAffected Products

Splashtop Software Updater

CVE References

CVE-2020-12431