PT-2022-13209 · Fidelis · Fidelis Network/Deception

Published

2022-05-17

Updated

2022-05-26

CVE-2022-0486

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Fidelis Network and Deception versions prior to 9.4.5

Description The issue is related to improper file permissions in the CommandPost, Collector, Sensor, and Sandbox components, allowing an attacker with local, administrative access to the CLI to modify affected files and escalate privileges to the root user. Patches and updates are available to address this issue.

Recommendations For versions prior to 9.4.5, update to version 9.4.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the affected components to minimize the risk of exploitation.

Fix

Incorrect Default Permissions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-276

Related Identifiers

CVE-2022-0486

Affected Products

Fidelis Network/Deception

PT-2022-13209 · Fidelis · Fidelis Network/Deception

CVE-2022-0486

Weakness Enumeration

Related Identifiers

Affected Products

References · 4