CVE-2022-47529
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Insecure Win32 memory objects in Endpoint Windows Agents in RSA NetWitness Platform before 12.2 allow local and admin Windows user accounts to modify the endpoint agent service configuration: to either disable it completely or run user-supplied code or commands, thereby bypassing tamper-protection features via ACL modification.
| Vendor | n/a |
| Product | n/a |
| Published | Mar 28, 2023 |
| Last Updated | Aug 3, 2024 |
Stay Ahead of the Next One
Get instant alerts for n/a n/a
Be the first to know when new unknown vulnerabilities affecting n/a n/a are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
n/a / n/a
n/a
References
twitter.com: https://twitter.com/hyp3rlinx/status/1639335477839790105 hyp3rlinx.altervista.org: https://hyp3rlinx.altervista.org/advisories/RSA_NETWITNESS_EDR_AGENT_INCORRECT_ACCESS_CONTROL_CVE-2022-47529.txt packetstormsecurity.com: https://packetstormsecurity.com/files/171476/RSA-NetWitness-Endpoint-EDR-Agent-12.x-Incorrect-Access-Control-Code-Execution.html seclists.org: https://seclists.org/fulldisclosure/2023/Mar/16 community.netwitness.com: https://community.netwitness.com/t5/netwitness-platform-security/nw-2023-04-netwitness-platform-security-advisory-cve-2022-47529/ta-p/696935 seclists.org: http://seclists.org/fulldisclosure/2023/Mar/26 github.com: https://github.com/hyp3rlinx/CVE-2022-47529 seclists.org: http://seclists.org/fulldisclosure/2024/Apr/17