65 matches found
CVE-2022-27904
Automox Agent for macOS before version 39 was vulnerable to a time-of-check/time-of-use TOCTOU race-condition attack during the agent install process...
Race condition
Automox Agent for macOS before version 39 was vulnerable to a time-of-check/time-of-use TOCTOU race-condition attack during the agent install process...
CVE-2022-27904
Automox Agent for macOS is affected by CVE-2022-27904 due to a time-of-check/time-of-use (TOCTOU) race condition during installation. The issue also involves improper access control on a file used by the PostInstall script, enabling an unprivileged user to obtain root access. Affected versions ar...
CVE-2022-27904
Automox Agent for macOS before version 39 was vulnerable to a time-of-check/time-of-use TOCTOU race-condition attack during the agent install process...
Automox Alive Automox Agent 安全漏洞
Automox is a cloud-based tool from US-based Automox Inc. It can fully automate the patch repair process in Windows, macOS, Linux and third-party software including Adobe, Firefox, Chrome and Windows. A security vulnerability exists in Automox Alive Automox Agent that originates from allowing an...
Maximize Your VM Investment: Fix Vulnerabilities Faster With Automox + Rapid7
The Rapid7 InsightConnect Extension library is getting bigger! We’ve teamed up with IT operations platform, Automox, to release a new plugin and technology alliance that closes the aperture of attack for vulnerability findings and automates remediation. Using the Automox Plugin for Rapid7...
CVE-2022-24308
Automox Agent prior to version 37 on Windows and Linux and Version 36 on OSX could allow for a non privileged user to obtain sensitive information during the install process...
CVE-2022-24308
Automox Agent prior to version 37 on Windows and Linux and Version 36 on OSX could allow for a non privileged user to obtain sensitive information during the install process...
CVE-2022-24308
Automox Agent prior to version 37 on Windows and Linux and Version 36 on OSX could allow for a non privileged user to obtain sensitive information during the install process...
Information disclosure
Automox Agent prior to version 37 on Windows and Linux and Version 36 on OSX could allow for a non privileged user to obtain sensitive information during the install process...
CVE-2022-24308
The CVE-2022-24308 entry concerns Automox Agent prior to version 37 on Windows and Linux, and version 36 on macOS, where a non-privileged user could obtain sensitive information during installation. Multiple sources (NVD, Red Hat, CNNVD-style entries) corroborate the same affected versions and im...
CVE-2022-24308
Automox Agent prior to version 37 on Windows and Linux and Version 36 on OSX could allow for a non privileged user to obtain sensitive information during the install process...
Automox Alive Automox Agent 安全漏洞
Automox Alive Automox Agent is an application from the Automox Alive community. An agent software. A security vulnerability exists in Automox Alive Automox Agent that originates from a vulnerability that could allow an unprivileged user to access sensitive information during installation. The...
Automox Agent 32 - Local Privilege Escalation Exploit
Exploit Title: Automox Agent 32 - Local Privilege Escalation Date: 13/12/2021 Exploit Author: Greg Foss Writeup: https://www.lacework.com/blog/cve-2021-43326/ Vendor Homepage: https://www.automox.com/ Software Link: https://support.automox.com/help/agents Version: 31, 32, 33 Tested on: Windows 10...
Automox Agent 32 Local Privilege Escalation
Exploit Title: Automox Agent 32 - Local Privilege Escalation Date: 13/12/2021 Exploit Author: Greg Foss Writeup: https://www.lacework.com/blog/cve-2021-43326/ Vendor Homepage: https://www.automox.com/ Software Link: https://support.automox.com/help/agents Version: 31, 32, 33 Tested on: Windows 10...
Automox Agent 32 - Local Privilege Escalation
Exploit Title: Automox Agent 32 - Local Privilege Escalation Date: 13/12/2021 Exploit Author: Greg Foss Writeup: https://www.lacework.com/blog/cve-2021-43326/ Vendor Homepage: https://www.automox.com/ Software Link: https://support.automox.com/help/agents Version: 31, 32, 33 Tested on: Windows 10...
automox Alive Automox Agent Denial of Service Vulnerability
automox Alive Automox Agent is an agent software from the Automox Alive community. The automox Alive Automox Agent before 32 version denial of service vulnerability, which stems from the agent incorrectly setting permissions to temporary directories. An attacker could exploit this vulnerability t...
CVE-2021-43326
Automox Agent before 32 on Windows incorrectly sets permissions on a temporary directory...
CVE-2021-43325
Automox Agent 33 on Windows incorrectly sets permissions on a temporary directory. NOTE: this issue exists because of a CVE-2021-43326 regression...
CVE-2021-43325
Automox Agent 33 on Windows incorrectly sets permissions on a temporary directory. NOTE: this issue exists because of a CVE-2021-43326 regression...