Fujitsu Security Solution AuthConductor Client Basic V2 Origin Validation Error Vulnerability Allowing Arbitrary Code Execution
Vulnerability
An origin validation error vulnerability has been identified in Fujitsu Security Solution AuthConductor Client Basic V2, specifically in versions through 2.0.25.0. This vulnerability allows an attacker with logged-in access to the Windows system where the software is installed to execute arbitrary code with SYSTEM privileges and/or modify registry values.
Impact
Exploitation of this vulnerability could lead to arbitrary code execution with SYSTEM privileges and unauthorized modifications to the Windows registry.
Remediation
Users are advised to update to the latest version of AuthConductor Client Basic V2. Those using version 2.0.25.0 or earlier should upgrade to version 2.0.25.1 or later. Users with version 2.0.24.1 or earlier should update to version 2.0.24.3. Instructions for downloading the latest version are available on the Fujitsu Driver Download page.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.