CyberRota
← Ana sayfaya dön

CVE-2026-47830

HIGH · CVSS 8.8

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-07-09T07:16:24.280 · Çekilme zamanı: 2026-07-09T12:07:10.678794+00:00

CyberRota Yorumu

Saldırganın giriş yapmış olması gerekebilir.

CVE
CVE-2026-47830
Severity
HIGH
CVSS
8.8
EPSS
Yok
Windows

Orijinal NVD Açıklaması

Incorrect Permission Assignment in BOSH.Utils.psm1 in BOSH-Ecosystem bosh-windows-stemcell-builder allows low-privilege authenticated users to overwrite C:\bosh\service_wrapper.exe or C:\bosh\bosh-agent.exe and gain NT AUTHORITY\SYSTEM on the next service restart or reboot. This can lead to full host control. Affected versions: bosh-windows-stemcell-builder versions prior to v2019.98.