PT-2022-23540 · Unknown · Pcprotect Endpoint
Mrvar0X
·
Published
2022-09-06
·
Updated
2022-09-12
·
CVE-2022-36670
CVSS v3.1
6.7
Medium
| Vector | AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
PCProtect Endpoint versions prior to 5.17.470
Description
The issue allows authenticated attackers with Administrator privileges to modify processes within the application and escalate privileges to SYSTEM via a crafted executable due to a lack of tamper protection.
Recommendations
For versions prior to 5.17.470, update to version 5.17.470 or later to resolve the issue.
Exploit
Fix
Incorrect Permission
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Pcprotect Endpoint