CVE-2022-23714Improper Privilege Management in Endpoint Security

CWE-264CWE-269Improper Privilege Management4 documents4 sources
Severity
7.8HIGHNVD
EPSS
0.0%
top 89.98%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Elastic Endpoint Security
Timeline
PublishedJul 6
Latest updateJul 7

Description

A local privilege escalation (LPE) issue was discovered in the ransomware canaries features of Elastic Endpoint Security for Windows, which could allow unprivileged users to elevate their privileges to those of the LocalSystem account.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

NVDelastic/endpoint_security7.13.07.17.4+1
CVEListV5elastic/endpoint_securityVersions 7.13.0 through 7.17.4 and 8.0.0 through 8.2.3

🔴Vulnerability Details

3
GHSA
GHSA-v4wm-hvmw-84h7: A local privilege escalation (LPE) issue was discovered in the ransomware canaries features of Elastic Endpoint Security for Windows, which could allo2022-07-07
CVEList
CVE-2022-23714: A local privilege escalation (LPE) issue was discovered in the ransomware canaries features of Elastic Endpoint Security for Windows, which could allo2022-07-06
VulnCheck
Elastic Endpoint Security for Windows Ransomware Canaries Features Local Privilege Escalation2022
CVE-2022-23714 — Improper Privilege Management | cvebase