Lucene search

[email protected]NVD:CVE-2022-38777

HistoryFeb 08, 2023 - 9:15 p.m.

CVE-2022-38777

2023-02-0821:15:10

CWE-269

[email protected]

web.nvd.nist.gov

elastic security windows

rollback vulnerability

privilege escalation

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.6

Confidence

High

EPSS

Percentile

13.2%

JSON

An issue was discovered in the rollback feature of Elastic Endpoint Security for Windows, which could allow unprivileged users to elevate their privileges to those of the LocalSystem account.

Affected configurations

Nvd

Node

microsoftwindowsMatch-

AND

elasticendgameRange<3.62.3

elasticendpoint_securityRange<7.17.9

elasticendpoint_securityRange8.0.0–8.5.0

VendorProductVersionCPE
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
elasticendgame*cpe:2.3:a:elastic:endgame:*:*:*:*:*:*:*:*
elasticendpoint_security*cpe:2.3:a:elastic:endpoint_security:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	windows	-	cpe:2.3:o:microsoft:windows:-:::::::*
elastic	endgame	*	cpe:2.3:a:elastic:endgame::::::::
elastic	endpoint_security	*	cpe:2.3:a:elastic:endpoint_security::::::::

References

discuss.elastic.co/t/elastic-7-17-9-8-5-0-and-8-6-1-security-update/324661

www.elastic.co/community/security

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.6

Confidence

High

EPSS

Percentile

13.2%

JSON

Related for NVD:CVE-2022-38777

cvelist1 prion1 cve1