Code injection

2023-01-2021:15:00

PRIOn knowledge base

www.prio-n.com

cybereason edr

dll hijacking

code injection

local attacker

elevated privileges

7.7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Cybereason EDR version 19.1.282 and above, 19.2.182 and above, 20.1.343 and above, and 20.2.X and above has a DLL hijacking vulnerability, which could allow a local attacker to execute code with elevated privileges.

CPENameOperatorVersion
endpoint_detection_and_responsege20.1.0
endpoint_detection_and_responselt20.1.343
endpoint_detection_and_responsege19.2.0
endpoint_detection_and_responselt19.2.182
endpoint_detection_and_responselt19.1.282
endpoint_detection_and_responseeq20.2.0

Name	Operator	Version
endpoint_detection_and_response	ge	20.1.0
endpoint_detection_and_response	lt	20.1.343
endpoint_detection_and_response	ge	19.2.0
endpoint_detection_and_response	lt	19.2.182
endpoint_detection_and_response	lt	19.1.282
endpoint_detection_and_response	eq	20.2.0