Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-24964

Improper access control vulnerability exists in the resident process of SKYSEA Client View versions from Ver.11.220 prior to Ver.19.2. If this vulnerability is exploited, an arbitrary process may be executed with SYSTEM privilege by a user who can log in to the PC where the product's Windows client is installed.

Published

2024-03-12T08:15:45.327

Last Modified

2025-05-23T14:44:17.253

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.3 (MEDIUM)

Weaknesses

Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	skygroup	skysea_client_view	≤ 19.101.01a	Yes

References

https://jvn.jp/en/jp/JVN54451757/ Third Party Advisory ([email protected])
https://www.skyseaclientview.net/news/240307_01/ Vendor Advisory ([email protected])
https://jvn.jp/en/jp/JVN54451757/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.skyseaclientview.net/news/240307_01/ Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)