14 matches found
EUVD-2018-2792
Malware in sbrugna...
CVE-2024-35214 Vulnerability in CylanceOPTICS Windows Installer Package Impacts CylanceOPTICS for Windows
A tampering vulnerability in the CylanceOPTICS Windows Installer Package of CylanceOPTICS for Windows version 3.2 and 3.3 could allow an attacker to potentially uninstall CylanceOPTICS from a system thereby leaving it with only the protection of CylancePROTECT...
CVE-2024-35214 Vulnerability in CylanceOPTICS Windows Installer Package Impacts CylanceOPTICS for Windows
A tampering vulnerability in the CylanceOPTICS Windows Installer Package of CylanceOPTICS for Windows version 3.2 and 3.3 could allow an attacker to potentially uninstall CylanceOPTICS from a system thereby leaving it with only the protection of CylancePROTECT...
CVE-2024-35214
CVE-2024-35214 affects BlackBerry CylanceOPTICS for Windows, specifically the Windows Installer Package in versions 3.2 and 3.3. The issue is a tampering vulnerability in the installer that could allow an attacker with local access to uninstall CylanceOPTICS, potentially leaving the system with o...
Cylance CylancePROTECT Privilege Extraction Vulnerability
Cylance CylancePROTECT is a suite of endpoint security protection software from Cylance USA. The software is capable of preventing ransomware, malware, and other attacks. A security vulnerability exists in Cylance CylancePROTECT versions prior to 1470, which stems from a user having...
CylancePROTECT 2.0.x < 2.0.1480 SSL Validation (Cy2008-002) (macOS)
The version of CylancePROTECT installed on the remote MacOS/MacOSX host is 2.0.x prior to 2.0.1480. It is, therefore, affected by an SSL validation flaw that can allow an attacker to cause an arbitrary file download. C Tenable Network Security, Inc. include"compat.inc"; if description...
CylancePROTECT 2.0.x < 2.0.1480 SSL Validation (Cy2008-002)
The version of CylancePROTECT installed on the remote host is a version 2.0.x prior to 2.0.1480. It is, therefore, affected by an SSL validation flaw that can allow an attacker to cause an arbitrary file download. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid109596...
CVE-2018-10722
In Cylance CylancePROTECT before 1470, an unprivileged local user can obtain SYSTEM privileges because users have Modify access to the %PROGRAMFILES%\Cylance\Desktop\log folder, the CyUpdate process grants users Modify access to new files created in this folder, and a new file can be a symlink...
CVE-2018-10722
In Cylance CylancePROTECT before 1470, an unprivileged local user can obtain SYSTEM privileges because users have Modify access to the %PROGRAMFILES%\Cylance\Desktop\log folder, the CyUpdate process grants users Modify access to new files created in this folder, and a new file can be a symlink...
Design/Logic Flaw
In Cylance CylancePROTECT before 1470, an unprivileged local user can obtain SYSTEM privileges because users have Modify access to the %PROGRAMFILES%\Cylance\Desktop\log folder, the CyUpdate process grants users Modify access to new files created in this folder, and a new file can be a symlink...
CVE-2018-10722
In Cylance CylancePROTECT before 1470, an unprivileged local user can obtain SYSTEM privileges because users have Modify access to the %PROGRAMFILES%\Cylance\Desktop\log folder, the CyUpdate process grants users Modify access to new files created in this folder, and a new file can be a symlink...
CVE-2018-10722
CVE-2018-10722 concerns CylancePROTECT (pre-1470) where an unprivileged local user can escalate to SYSTEM due to overly permissive access to the log folder under %PROGRAMFILES%\Cylance\Desktop\log. The CyUpdate process grants users Modify rights to new files created there, allowing a symlink chai...
CylancePROTECT Detection (Mac OS X)
Binary data macosxcylanceprotectinstalled.nbin...
CylancePROTECT Detection
Binary data cylanceprotectinstalled.nbin...