CVE-2022-31199

Name of the Vulnerable Software and Affected Versions Netwrix Auditor (affected versions not specified)

Description The issue is related to insufficient deserialization mechanisms in the User Activity Video Recording component of Netwrix Auditor. This can be exploited by a remote attacker to execute arbitrary code as the NT AUTHORITYSYSTEM user. The vulnerability affects both the Netwrix Auditor server and agents installed on monitored systems. It is also mentioned that Truebot malware targets organizations in the US and Canada to exfiltrate sensitive information by exploiting vulnerabilities in the Netwrix Auditor application.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.