CVE-2021-42110 HIGH

CVE-2021-42110

Vendor N/A
Product n/a
Published December 8, 2021
Last update May 30, 2025

CVSS base score

7.1/10
Attack vector Adjacent
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity Low

CVSS vector

CVSS:3.1/AC:L/AV:A/A:N/C:H/I:L/PR:N/S:U/UI:N

What the vulnerability does

01Description

An issue was discovered in Allegro Windows (formerly Popsy Windows) before 3.3.4156.1. A standard user can escalate privileges to SYSTEM if the FTP module is installed, because of DLL hijacking.

Key dates

02Disclosure timeline

December 8, 2021 CVE published
May 30, 2025 Record updated