PT-2023-25322 · Stormshield · Stormshield Endpoint Security Evolution
Published
2023-06-27
·
Updated
2023-07-05
·
CVE-2023-35800
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Stormshield Endpoint Security Evolution versions 2.0.0 through 2.4.2
Description
The issue is related to Insecure Permissions in the Stormshield Endpoint Security Evolution agent directory. An ACL entry allows interactive users to read data that could provide access to information reserved for administrators. This could potentially allow unauthorized access to sensitive information.
Recommendations
For Stormshield Endpoint Security Evolution versions 2.0.0 through 2.4.2, consider restricting access to the agent logs displayed in the GUI to prevent interactive users from reading sensitive data until a patch is available. As a temporary workaround, review and modify the ACL entries on the SES Evolution agent directory to ensure that only authorized users have access to the logs.
Fix
Incorrect Permission
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Stormshield Endpoint Security Evolution