CVE-2021-44049

Опубликовано: 15 янв. 2022

Источник: nvd

CVSS3: 7.8

CVSS2: 6.9

EPSS Низкий

Описание

CyberArk Endpoint Privilege Manager (EPM) through 11.5.3.328 before 2021-12-20 allows a local user to gain elevated privileges via a Trojan horse Procmon64.exe in the user's Temp directory.

Ссылки

https://docs.cyberark.com/Product-Doc/OnlineHelp/EPM-onprem/Latest/en/Content/Release%20Notes/RN-WhatsNew.htm
Vendor Advisory
https://hencohen10.medium.com/cyberark-endpoint-manager-local-privilege-escalation-cve-2021-44049-67cd5e62c3d2
Exploit
Third Party Advisory
https://www.cyberark.com/ca21-34/
Permissions Required
Vendor Advisory
https://www.cyberark.com/product-security/
Vendor Advisory
https://docs.cyberark.com/Product-Doc/OnlineHelp/EPM-onprem/Latest/en/Content/Release%20Notes/RN-WhatsNew.htm
Vendor Advisory
https://hencohen10.medium.com/cyberark-endpoint-manager-local-privilege-escalation-cve-2021-44049-67cd5e62c3d2
Exploit
Third Party Advisory
https://www.cyberark.com/ca21-34/
Permissions Required
Vendor Advisory
https://www.cyberark.com/product-security/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:cyberark:endpoint_privilege_manager:*:*:*:*:*:windows:*:*

Версия от 11.5.3.328 (включая) до 11.5.4.355 (исключая)

cpe:2.3:a:cyberark:endpoint_privilege_manager:*:*:*:*:*:macos:*:*

Версия от 11.5.3.328 (включая) до 11.5.4.500 (исключая)

EPSS

Процентиль: 16%

0.00052

Низкий

7.8 High

CVSS3

6.9 Medium

CVSS2

Дефекты

CWE-668

Связанные уязвимости

GHSA-2rgr-qf84-6h4j