Privilege Escalation in TXOne Networks StellarProtect and Safe Lock
CVE-2024-47935

5.4MEDIUM

Key Information:

Vendor: Txone Networks
Status: Stellarprotect (legacy Mode); Stellarenforce; Safe Lock
Vendor: CVE Published:; 17 February 2025

🔔 Create Txone Networks Vulnerability Alert

What is CVE-2024-47935?

An improper validation vulnerability in TXOne Networks' StellarProtect (Legacy Mode), StellarEnforce, and Safe Lock allows an attacker to escalate privileges on a victim's device. By hijacking the Dynamic Link Library (DLL) file beforehand, malicious actors can exploit the flaw to gain unauthorized access, potentially undermining the security posture of affected systems. This vulnerability necessitates immediate attention to mitigate potential security risks.

Affected Version(s)

Safe Lock 3.0.0 < 3.1.1076

StellarEnforce 0 < 3.2

StellarProtect (Legacy Mode) 0 < 3.2

References

https://www.txone.com/psirt/advisories/cve-2024-47935/

CVSS V4

Score:

5.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 17, 2025
Vulnerability Reserved
Oct 7, 2024