22 matches found
CVE-2025-42706 CrowdStrike Falcon Sensor for Windows Logic Error
A logic error exists in the Falcon sensor for Windows that could allow an attacker, with the prior ability to execute code on a host, to delete arbitrary files. CrowdStrike released a security fix for this issue in Falcon sensor for Windows versions 7.24 and above and all Long Term Visibility LTV...
CVE-2025-42706 CrowdStrike Falcon Sensor for Windows Logic Error
A logic error exists in the Falcon sensor for Windows that could allow an attacker, with the prior ability to execute code on a host, to delete arbitrary files. CrowdStrike released a security fix for this issue in Falcon sensor for Windows versions 7.24 and above and all Long Term Visibility LTV...
CVE-2025-42706
CVE-2025-42706 describes a logic error in the Windows CrowdStrike Falcon Sensor that could allow an attacker with prior code execution on a host to delete arbitrary files. Affected software: Falcon Sensor for Windows (pre-7.24) and all Long Term Visibility sensors; fixes released for Windows 7.24...
EUVD-2022-35075
Malicious code in bioql PyPI...
MAL-2025-47215 Malicious code in @crowdstrike/falcon-shoelace (npm)
postinstall script executes bundle.js. bundle.js triggers unsignedbitwisemathexcess YARA rule. Suspicious behavior indicates malware. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 035c35169c1f3c6c939e3237ce0bb606645b05601db61892b5d54cbeea095b57 Any computer that h...
CVE-2022-2841
A vulnerability was found in CrowdStrike Falcon 6.31.14505.0/6.42.15610/6.44.15806. It has been classified as problematic. Affected is an unknown function of the component Uninstallation Handler. The manipulation leads to missing authorization. It is possible to launch the attack remotely. The...
CVE-2025-1146 CrowdStrike Falcon Sensor for Linux TLS Issue
CrowdStrike uses industry-standard TLS transport layer security to secure communications from the Falcon sensor to the CrowdStrike cloud. CrowdStrike has identified a validation logic error in the Falcon sensor for Linux, Falcon Kubernetes Admission Controller, and Falcon Container Sensor where o...
PT-2025-6837 · Crowdstrike · Falcon Sensor For Linux +2
Name of the Vulnerable Software and Affected Versions: Falcon Sensor for Linux versions prior to 7.06 Falcon Kubernetes Admission Controller versions prior to 7.06 Falcon Container Sensor versions prior to 7.06 Description: The issue is related to a validation logic error in the TLS connection...
CrowdStrike Falcon 安全漏洞
CrowdStrike Falcon is an endpoint, cloud and identity protection product from CrowdStrike, Inc. in the United States. A security vulnerability exists in CrowdStrike Falcon that stems from an error in the TLS connection routine validation logic, which can lead to a man-in-the-middle attack. The...
The massive computer outage over the weekend was not a cyber attack, and I’m not sure why we have to keep saying that
Youre not going to believe this, but there was a lot of misinformation on social media over the weekend after the massive CrowdStrike/Microsoft outage. As airlines cancelled flights, hospitals had to reschedule patients and some companies just flat-out couldnt work on Friday, people were quick to...
CrowdStrike Falcon AGENT 6.44.15806 - Uninstall without Installation Token
Exploit Title: CrowdStrike Falcon AGENT 6.44.15806 - Uninstall without Installation Token Date: 30/11/2022 Exploit Author: Walter Oberacher, Raffaele Nacca, Davide Bianchin, Fortunato Lodari, Luca Bernardi Deda Cloud Cybersecurity Team Vendor Homepage: https://www.crowdstrike.com/ Author Homepage...
CrowdStrike Falcon AGENT 6.44.15806 - Uninstall without Installation Token Vulnerability
Exploit Title: CrowdStrike Falcon AGENT 6.44.15806 - Uninstall without Installation Token Exploit Author: Walter Oberacher, Raffaele Nacca, Davide Bianchin, Fortunato Lodari, Luca Bernardi Deda Cloud Cybersecurity Team Vendor Homepage: https://www.crowdstrike.com/ Author Homepage:...
CrowdStrike Falcon Agent 6.44.15806 Uninstall Issue
Exploit Title: CrowdStrike Falcon AGENT 6.44.15806 - Uninstall without Installation Token Date: 30/11/2022 Exploit Author: Walter Oberacher, Raffaele Nacca, Davide Bianchin, Fortunato Lodari, Luca Bernardi Deda Cloud Cybersecurity Team Vendor Homepage: https://www.crowdstrike.com/ Author Homepage...
PT-2022-27284 · Crowdstrike · Crowdstrike Falcon
Name of the Vulnerable Software and Affected Versions: CrowdStrike Falcon version 6.44.15806 Description: The issue allows an administrative attacker to uninstall Falcon Sensor, bypassing the intended protection mechanism that requires possessing a one-time token. The sensor is managed at the...
CVE-2022-2841
A vulnerability was found in CrowdStrike Falcon 6.31.14505.0/6.42.15610/6.44.15806. It has been classified as problematic. Affected is an unknown function of the component Uninstallation Handler. The manipulation leads to missing authorization. It is possible to launch the attack remotely. The...
CVE-2022-2841
A vulnerability was found in CrowdStrike Falcon 6.31.14505.0/6.42.15610/6.44.15806. It has been classified as problematic. Affected is an unknown function of the component Uninstallation Handler. The manipulation leads to missing authorization. It is possible to launch the attack remotely. The...
Authorization
A vulnerability was found in CrowdStrike Falcon 6.31.14505.0/6.42.15610/6.44.15806. It has been classified as problematic. Affected is an unknown function of the component Uninstallation Handler. The manipulation leads to missing authorization. It is possible to launch the attack remotely. The...
CVE-2022-2841
CVE-2022-2841 affects CrowdStrike Falcon sensor versions 6.31.14505.0, 6.42.15610, and 6.44.15806 via the Uninstallation Handler. The root cause is an authorization flaw that can be exploited remotely to uninstall the sensor without proper authorization. Public exploitation appears in disclosures...
CVE-2022-2841 CrowdStrike Falcon Uninstallation authorization
A vulnerability was found in CrowdStrike Falcon 6.31.14505.0/6.42.15610/6.44.15806. It has been classified as problematic. Affected is an unknown function of the component Uninstallation Handler. The manipulation leads to missing authorization. It is possible to launch the attack remotely. The...
PT-2022-4350 · Crowdstrike · Crowdstrike Falcon
Name of the Vulnerable Software and Affected Versions: CrowdStrike Falcon versions 6.31.14505.0 through 6.44.15806 Description: A vulnerability was found in the Uninstallation Handler component of CrowdStrike Falcon, related to incorrect implementation of the uninstall protection function. This...