ComparedArray/printix-CVE-2022-25089

GitHub

github.com

Releases1

Frequency

Last Release over 4 years ago

Stars2

An "Incorrect Use of a Privileged API" vulnerability in PrintixService.exe, in Printix's "Printix Secure Cloud Print Management", Version 1.3.1106.0 and below allows a Local Or Remote attacker the ability change all HKEY Windows Registry values as SYSTEM context via the UITasks.PersistentRegistryData parameter.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-25089 ↗	Mar 3, 2022Thursday, 3 March 2022, 00:15	9.8 CRITICAL	7.5 HIGH
Printix Secure Cloud Print Management through 1.3.1106.0 incorrectly uses Privileged APIs to modify values in HKEY_LOCAL_MACHINE via UITasks.PersistentRegistryData.