PT-2024-21845 · Withsecure · Withsecure Elements Agent+2
Max Keasley
·
Published
2024-07-26
·
Updated
2024-08-01
·
CVE-2024-27357
CVSS v3.1
5.8
Medium
| Vector | AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
WithSecure Elements Agent versions through 23.x
WithSecure Elements Client Security versions through 23.x
WithSecure MDR versions through 23.x
Description
An issue allows Local Privilege Escalation to occur during installations or updates by admins.
Recommendations
For WithSecure Elements Agent versions through 23.x, update to a version that fixes the Local Privilege Escalation issue.
For WithSecure Elements Client Security versions through 23.x, update to a version that fixes the Local Privilege Escalation issue.
For WithSecure MDR versions through 23.x, update to a version that fixes the Local Privilege Escalation issue.
Fix
Improper Privilege Management
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Withsecure Elements Agent
Withsecure Elements Client Security
Withsecure Mdr