Trend Micro · Ossec · CVE-2018-19666
**Name of the Vulnerable Software and Affected Versions**
OSSEC versions through 3.1.0
**Description**
The issue allows local users to gain NT AUTHORITYSYSTEM access via Directory Traversal by leveraging full access to the associated OSSEC server.
**Recommendations**
For OSSEC versions through 3.1.0, update to a version later than 3.1.0 to resolve the issue.