6 matches found
CVE-2025-57625
CYRISMA Sensor before 444 for Windows has an Insecure Folder and File Permissions vulnerability. A low-privileged user can abuse these issues to escalate privileges and execute arbitrary code in the context of NT AUTHORITY\SYSTEM by replacing DataSpotliteAgent.exe or any other binaries called by...
CVE-2025-57625
CYRISMA Sensor before 444 for Windows has an Insecure Folder and File Permissions vulnerability. A low-privileged user can abuse these issues to escalate privileges and execute arbitrary code in the context of NT AUTHORITY\SYSTEM by replacing DataSpotliteAgent.exe or any other binaries called by...
CVE-2025-57625
CYRISMA Sensor for Windows versions before 444 contains an insecure folder and file permissions flaw that lets a low-privilege user replace DataSpotliteAgent.exe (or other binaries invoked by the Cyrisma_Agent service at startup) and escalate to NT AUTHORITY\SYSTEM, enabling arbitrary code execut...
CVE-2025-57625
CYRISMA Sensor before 444 for Windows has an Insecure Folder and File Permissions vulnerability. A low-privileged user can abuse these issues to escalate privileges and execute arbitrary code in the context of NT AUTHORITY\SYSTEM by replacing DataSpotliteAgent.exe or any other binaries called by...
CVE-2025-57625
CYRISMA Sensor before 444 for Windows has an Insecure Folder and File Permissions vulnerability. A low-privileged user can abuse these issues to escalate privileges and execute arbitrary code in the context of NT AUTHORITY\SYSTEM by replacing DataSpotliteAgent.exe or any other binaries called by...
CYRISMA Sensor 安全漏洞
CYRISMA Sensor is a scanning and detection component from CYRISMA USA. A security vulnerability exists in versions prior to CYRISMA Sensor 444, which stems from insecure folder and file permissions that could allow a low-privileged user to elevate privileges by replacing binaries and executing...