PT-2021-22792 · Rapid7 · Rapid7 Insight Agent

Dawson Medin

Published

2021-12-14

Updated

2021-12-21

CVE-2021-4007

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Rapid7 Insight Agent versions 3.0.1 through 3.1.2.34

Description The issue is a local privilege escalation due to an uncontrolled DLL search path. When the software starts, the Python interpreter attempts to load python3.dll at a location that is normally writable by locally authenticated users. This allows a malicious local user to elevate to SYSTEM privileges.

Recommendations For versions 3.0.1 through 3.1.2.34, update to version 3.1.2.35 to resolve the issue.

Fix

Uncontrolled Search Path Element

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-427

Related Identifiers

CVE-2021-4007

Affected Products

Rapid7 Insight Agent

PT-2021-22792 · Rapid7 · Rapid7 Insight Agent

CVE-2021-4007

Weakness Enumeration

Related Identifiers

Affected Products

References · 5