PT-2022-27284 · Crowdstrike · Crowdstrike Falcon
Published
2022-12-04
·
Updated
2022-12-29
·
CVE-2022-44721
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions
CrowdStrike Falcon version 6.44.15806
Description
The issue allows an administrative attacker to uninstall Falcon Sensor, bypassing the intended protection mechanism that requires possessing a one-time token. The sensor is managed at the kernel level.
Recommendations
For CrowdStrike Falcon version 6.44.15806, as a temporary workaround, consider restricting administrative access to minimize the risk of exploitation until a patch is available.
Exploit
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Crowdstrike Falcon