CVE-2023-28141

Name of the Vulnerable Software and Affected Versions Qualys Cloud Agent for Windows versions prior to 4.8.0.31

Description An NTFS Junction condition exists in the Qualys Cloud Agent for Windows platform. Attackers may write files to arbitrary locations via a local attack vector, allowing them to assume the privileges of the process and potentially modify or delete sensitive files limited to a specific directory or file object. This issue is bounded to the time of installation or uninstallation and can only be exploited locally.

Recommendations For versions prior to 4.8.0.31, update to version 4.8.0.31 or later to resolve the issue. At the moment, there is no additional information about other mitigation measures.