Improper privilege management in the log rotation...
High severity
Unreviewed
Published
May 5, 2026
to the GitHub Advisory Database
•
Updated May 5, 2026
Description
Published by the National Vulnerability Database
May 4, 2026
Published to the GitHub Advisory Database
May 5, 2026
Last updated
May 5, 2026
Improper privilege management in the log rotation mechanism of the Skylight Workspace Config Service in Amazon WorkSpaces for Windows before 2.6.2034.0 allows a local non-admin authenticated user to place arbitrary files into arbitrary locations bypassing file system permission protections, leading to local privilege escalation to SYSTEM.
References