AutomationManager Race Condition Vulnerability Could Lead to Arbitrary File Deletions

CVE-2023-37244

5.3MEDIUM

Key Information

Vendor: N-able
Status: Automationmanageragent
Vendor: CVE Published:; 2 May 2024

Summary

The affected AutomationManager.AgentService.exe application contains a TOCTOU race condition vulnerability that allows standard users to create a pseudo-symlink at C:\ProgramData\N-Able Technologies\AutomationManager\Temp, which could be leveraged by an attacker to manipulate the process into performing arbitrary file deletions. We recommend upgrading to version 2.91.0.0

Affected Version(s)

AutomationManagerAgent <= 2.80.0.1

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published.
May 2, 2024
Vulnerability Reserved.
Jun 29, 2023

Collectors

NVD DatabaseMitre Database