CVE-2018-4863

Опубликовано: 05 апр. 2018

Источник: nvd

CVSS3: 5.5

CVSS2: 2.1

EPSS Низкий

Описание

Sophos Endpoint Protection 10.7 allows local users to bypass an intended tamper protection mechanism by deleting the HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Sophos Endpoint Defense\ registry key.

Ссылки

http://hyp3rlinx.altervista.org/advisories/SOPHOS-ENDPOINT-PROTECTION-v10.7-TAMPER-PROTECTION-BYPASS-CVE-2018-4863.txt
Exploit
Third Party Advisory
http://seclists.org/fulldisclosure/2018/Apr/6
Exploit
Mailing List
Third Party Advisory
https://www.exploit-db.com/exploits/44410/
Exploit
Third Party Advisory
VDB Entry
http://hyp3rlinx.altervista.org/advisories/SOPHOS-ENDPOINT-PROTECTION-v10.7-TAMPER-PROTECTION-BYPASS-CVE-2018-4863.txt
Exploit
Third Party Advisory
http://seclists.org/fulldisclosure/2018/Apr/6
Exploit
Mailing List
Third Party Advisory
https://www.exploit-db.com/exploits/44410/
Exploit
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:sophos:endpoint_protection:10.7:*:*:*:*:*:*:*

EPSS

Процентиль: 11%

0.00038

Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-254

Связанные уязвимости

GHSA-2vm5-6gc7-pcvr