Ncia Researchers

**Name of the Vulnerable Software and Affected Versions** WebConsole (affected versions not specified) **Description** The Report Builder component stores user input directly into a web page and displays it to other users, potentially leading to a Cross-Site Scripting (XSS) attack. The scripts are executed when a report is modified by a user with edit permissions, not when the report is run by end users. The WebConsole package is end of life and is no longer maintained. It is strongly recommended to avoid installing or using it in production environments. If used, it must be deployed within a fully isolated network with no access to sensitive data or internet connectivity. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Thycotic Secret Server versions 11.7 and earlier Description: The issue allows an administrator to gain access to restricted tables through a SQL report creation vulnerability. Recommendations: For Thycotic Secret Server versions 11.7 and earlier, update to a version later than 11.7 to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Secret Server versions 11.7.49 and earlier Description: The distributed engine of Secret Server can be exploited during an initial authorization event, allowing an attacker to impersonate another distributed engine. Recommendations: For Secret Server versions 11.7.49 and earlier, consider restricting access to the distributed engine until a patch is available. As a temporary workaround, limit the initial authorization events to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: System Information Reporter (SIR) versions 1.0.3 and prior Description: A path traversal issue allows an authenticated, high-privileged user to send malicious ePO post requests, potentially creating files anywhere on the filesystem, overwriting existing files, and exposing sensitive information. Recommendations: For System Information Reporter (SIR) versions 1.0.3 and prior, consider restricting access to the ePO post request functionality until a patch is available. As a temporary workaround, limit the privileges of users who can issue ePO post requests to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: System Information Reporter versions 1.0.3 and prior Description: The issue allows a local user to manipulate the location of registry backup files by creating a junction symlink, potentially overwriting system files. This can be achieved by adding a malicious entry to the registry or via policy, which may cause a system crash. An authenticated non-admin local user can exploit this to access files they would not normally have permission to access. Recommendations: For System Information Reporter versions 1.0.3 and prior, consider restricting access to the registry under the Trellix SIR registry folder to minimize the risk of exploitation. As a temporary workaround, avoid using junction symbolic links in the System Information Reporter until a patch is available. Restrict access to system files that the user would not normally have permission to access to prevent potential overwrites.

Name of the Vulnerable Software and Affected Versions: System Information Reporter (SIR) versions 1.0.3 and prior Description: A sensitive information exposure issue allows an authenticated non-admin local user to extract sensitive information stored in a registry backup folder. Recommendations: For System Information Reporter (SIR) versions 1.0.3 and prior, consider restricting access to the registry backup folder to prevent sensitive information exposure until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.