Remote Code Execution Vulnerability in Endpoint Protector and Unify Agents
CVE-2024-36073

7.2HIGH

Key Information:

Vendor: Netwrix
Status: CoSoSys Endpoint Protector and Unify
Vendor: CVE Published:; 27 June 2024

What is CVE-2024-36073?

A vulnerability exists in the shadowing component of Netwrix CoSoSys Endpoint Protector (up to version 5.9.3) and CoSoSys Unify (up to version 7.0.6), allowing attackers with administrative access to overwrite sensitive configurations. This flaw can lead to the execution of system commands on targeted endpoints with SYSTEM or root privileges, posing significant security risks.

References

https://helpcenter.netwrix.com/bundle/z-kb-articles-sales...

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 27, 2024

CVE-2024-36073 Data

JSON