Описание
Stormshield Endpoint Security Evolution 2.0.0 through 2.0.2 does not accomplish the intended defense against local administrators who can replace the Visual C++ runtime DLLs (in %WINDIR%\system32) with malicious ones.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 2.0.0 (включая) до 2.0.2 (включая)
cpe:2.3:a:stormshield:endpoint_security:*:*:*:*:*:*:*:*
EPSS
Процентиль: 17%
0.00055
Низкий
6.7 Medium
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-427
Связанные уязвимости
github
больше 3 лет назад
Stormshield Endpoint Security Evolution 2.0.0 through 2.0.2 does not accomplish the intended defense against local administrators who can replace the Visual C++ runtime DLLs (in %WINDIR%\system32) with malicious ones.
EPSS
Процентиль: 17%
0.00055
Низкий
6.7 Medium
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-427