Описание
Sygate Security Agent (SSA) in Sygate Secure Enterprise 3.5 through 4.1 does not prevent the security policy from being updated by unprivileged users, which allows local users to modify the policy by exporting the policy file, changing it, and importing it back into SSA.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:sygate_technologies:security_agent:3.5_build_2576:*:*:*:*:*:*:*
cpe:2.3:a:sygate_technologies:security_agent:3.5_build_2577:*:*:*:*:*:*:*
cpe:2.3:a:sygate_technologies:security_agent:4.0:*:*:*:*:*:*:*
cpe:2.3:a:sygate_technologies:security_agent:4.1:*:*:*:*:*:*:*
EPSS
Процентиль: 18%
0.00059
Низкий
4.6 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Sygate Security Agent (SSA) in Sygate Secure Enterprise 3.5 through 4.1 does not prevent the security policy from being updated by unprivileged users, which allows local users to modify the policy by exporting the policy file, changing it, and importing it back into SSA.
EPSS
Процентиль: 18%
0.00059
Низкий
4.6 Medium
CVSS2
Дефекты
NVD-CWE-Other