PT-2024-41 — Improper Authentication in Pt Pt Maxpatrol O2+4

PT-2024-41 · Pt · Pt Maxpatrol O2+4

Published

2025-01-22

Updated

2025-01-28

CVSS v4.0

9.5

Critical

Vector

AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Name of the Vulnerable Software and Affected Versions PT MaxPatrol SIEM (affected versions not specified) PT MaxPatrol VM (affected versions not specified) PT MaxPatrol EDR (affected versions not specified) PT MaxPatrol Carbon (affected versions not specified) PT MaxPatrol O2 (affected versions not specified)

Description The issue is related to incorrect authentication in the PT MC component. This could allow a remote attacker to elevate their privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

BDU:2025-00698

Affected Products

Pt Maxpatrol Carbon

Pt Maxpatrol Edr

Pt Maxpatrol O2

Pt Maxpatrol Siem

Pt Maxpatrol Vm

PT-2024-41 · Pt · Pt Maxpatrol O2+4

Weakness Enumeration

Related Identifiers

Affected Products

References · 2