Security Advisory Detail

Go to 

WatchGuard Terminal Services Agent Local Privilege Escalation via Non-Standard Installation Directory

Advisory ID
WGSA-2025-00005
CVE
CVE-2025-2782
Impact
Medium
Status
Resolved
Product Family
Other Software
Published Date
Updated Date
Workaround Available
False
CVSS Score
6.3
CVSS Vector
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:H/SI:H/SA:H
Summary

The WatchGuard Terminal Services Agent on Windows does not properly configure directory permissions when installed in a non-default directory. This could allow an authenticated local attacker to escalate to SYSTEM privileges on a vulnerable system.

Affected

This issue affects Terminal Services Agent: from 12.0 through 12.10.

Resolution

This issue is resolved in Terminal Services Agent 12.11.2.

Advisory Product List
Product Family Product Branch Product List
Other Software
Terminal Services Agent TS Agent
Advisory List