CVE-2021-43326
published 2021-12-15CVE-2021-43326: Automox Agent before 32 on Windows incorrectly sets permissions on a temporary directory.
PriorityP342high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EXPLOIT
EPSS
1.23%
65.3th percentile
Automox Agent before 32 on Windows incorrectly sets permissions on a temporary directory.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| automox | automox | < 32 | 32 |
| automox | automox | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.04.6MEDIUMAV:L/AC:L/Au:N/C:P/I:P/A:P
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-fjr4-p4q2-8f3f: Automox Agent before 32 on Windows incorrectly sets permissions on a temporary directory
ghsa_unreviewed·2021-12-16
CVE-2021-43326 [HIGH] CWE-276 GHSA-fjr4-p4q2-8f3f: Automox Agent before 32 on Windows incorrectly sets permissions on a temporary directory
Automox Agent before 32 on Windows incorrectly sets permissions on a temporary directory.
GHSA
GHSA-c5pv-rm96-f3q6: Automox Agent 33 on Windows incorrectly sets permissions on a temporary directory
ghsa_unreviewed·2021-12-16·CVSS 7.8
CVE-2021-43325 [HIGH] CWE-276 GHSA-c5pv-rm96-f3q6: Automox Agent 33 on Windows incorrectly sets permissions on a temporary directory
Automox Agent 33 on Windows incorrectly sets permissions on a temporary directory. NOTE: this issue exists because of a CVE-2021-43326 regression.
No detection rules found.
No writeups or analysis indexed.
http://packetstormsecurity.com/files/165449/Automox-Agent-32-Local-Privilege-Escalation.htmlhttps://community.automox.com/product-updates-4/cve-2021-43326-and-cve-2021-43325-local-privilege-escalation-in-automox-agent-windows-only-1636https://support.automox.com/help/release-noteshttp://packetstormsecurity.com/files/165449/Automox-Agent-32-Local-Privilege-Escalation.htmlhttps://community.automox.com/product-updates-4/cve-2021-43326-and-cve-2021-43325-local-privilege-escalation-in-automox-agent-windows-only-1636https://support.automox.com/help/release-notes
2021-12-15
Published