CVE-2020-36162

Name of the Vulnerable Software and Affected Versions: Veritas CloudPoint versions prior to 8.3.0.1+hotfix

Description: An issue in the CloudPoint Windows Agent, which uses the OpenSSL library, allows a low-privileged user to potentially achieve arbitrary code execution. This is possible because the OpenSSL library attempts to load a configuration file (openssl.cnf) from a location (usrlocalssl) that does not exist by default on Windows systems. A malicious user can create this directory and file, loading a malicious OpenSSL engine. This could grant the attacker administrator access to the system, allowing them to access all data and installed applications.

Recommendations: For versions prior to 8.3.0.1+hotfix, update to version 8.3.0.1+hotfix or later to resolve the issue. As a temporary workaround, consider restricting access to the usrlocalssl directory to prevent malicious configuration files from being created.