2 matches found
CVE-2019-14969
Netwrix Auditor before 9.8 has insecure permissions on %PROGRAMDATA%\Netwrix Auditor\Logs\ActiveDirectory\ and sub-folders. In addition, the service Netwrix.ADA.StorageAuditService which writes to that directory does not perform proper impersonation, and thus the target file will have the same...
CVE-2019-14969
Netwrix Auditor pre-9.8 is affected by insecure permissions on %PROGRAMDATA%\Netwrix Auditor\Logs\ActiveDirectory\ and its subfolders. The Netwrix.ADA.StorageAuditService writes to that directory and does not impersonate properly, so target files inherit the invoking process’s permissions, granti...