# Elevation of system privilege

This document will explain you about the vulnerability reported by Abdullah AlJaber, which allows unauthorised user, whose computer is installed with Endpoint Central Agent to access command prompt with SYSTEM privilege.

| Vulnerabilities | Fix Released on |
|---|---|
| CVE-2018-13411, CVE-2018-13412 | 23-Aug-2018 |

## What was the Problem?

Unauthorised users, whose computer is installed with Endpoint Central Agent were able to access command prompt with SYSTEM privilege.

## How do I fix it?

This has been identified and fixed on **23-Aug-2018**. To apply this fix, follow the below steps:

1. Log in to your Endpoint Central console, click on your current build number on the top right corner.
2. You can find the latest build applicable to you. Download the PPM and update.

**Note:** The fix is available from agent version 10.0.282 in cloud editions of Endpoint Central, Patch Manager Plus and Remote Access Plus.

**Keywords:** Security Updates, Vulnerabilities and Fixes.

[Knowledge Base](https://www.manageengine.com/products/desktop-central/knowledge-base.html)