Eltima SDK Vulnerabilities Affect  AWS and 12 Other Cloud Services

Glip_Eltima SDK Vulnerabilities Affect AWS and 12 Other Cloud Services-014315102291585684375

Researchers have discovered a number of high-security flaws in a library created by network virtualization company Eltima, which leaves nearly a dozen cloud services used by millions of users around the world exposed to privilege-escalation attacks.

The companies impacted include Amazon WorkSpaces, Accops and NoMachine, among others: all applications that enable remote desktop access with the Eltima software development kit (SDK) to enable the company’s “USB Over Ethernet” product. USB Over Ethernet enables the sharing of multiple USB devices via Ethernet, so users can connect to devices such as remote web cameras.

The flaws allow attackers to escalate privileges to initiate a host of malicious actions.

Read More: Threatpost

For more such updates follow us on Google News ITsecuritywire News