CVE-2024-7249

CWE-593 documents3 sources
Severity
7.8HIGH
EPSS
0.1%
top 72.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Comodo Firewall
Timeline
PublishedJul 29
Latest updateJul 30

Description

Comodo Firewall Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Comodo Firewall. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the cmdagent executable. By creating a symbolic link, an attacker can abuse the application to delete a file. An attacker can leverage this vulnerabi

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5comodo/firewall12.2.2.8012
NVDcomodo/firewall12.2.2.8012

🔴Vulnerability Details

2
GHSA
GHSA-xj7g-33m8-grpw: Comodo Firewall Link Following Local Privilege Escalation Vulnerability2024-07-30
CVEList
Comodo Firewall Link Following Local Privilege Escalation Vulnerability2024-07-29
CVE-2024-7249 (HIGH CVSS 7.8) | Comodo Firewall Link Following Loca | cvebase.io