ГлавнаяУязвимости → CVE-2022-48685
7.7высокая

CVE-2022-48685

Описание

An issue was discovered in Logpoint 7.1 before 7.1.2. The daily executed cron file clean_secbi_old_logs is writable by all users and is executed as root, leading to privilege escalation.

Затрагиваемое ПО
Logpoint Siem
CVSS
Балл7.7 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
Источники
https://servicedesk.logpoint.com/hc/en-us/articles/7997112373277-Privilege-Escalation-Through-Cronjobhttps://servicedesk.logpoint.com/hc/en-us/articles/7997112373277-Privilege-Escalation-Through-Cronjob