Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 9:51 p.m.20 views

CVE-2022-47529

Insecure Win32 memory objects in Endpoint Windows Agents in RSA NetWitness Platform before 12.2 allow local and admin Windows user accounts to modify the endpoint agent service configuration: to either disable it completely or run user-supplied code or commands, thereby bypassing tamper-protectio...

6.7CVSS6.9AI score0.0157EPSS
Exploits5
Exploit DB
Exploit DB
added 2023/04/08 12:0 a.m.323 views

RSA NetWitness Platform 12.2 - Incorrect Access Control / Code Execution

Exploit Title: RSA NetWitness Platform 12.2 - Incorrect Access Control / Code Execution + Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/RSANETWITNESSEDRAGENTINCORRECTACCESSCONTROLCVE-2022-47529.txt + twitter.com/hyp3rlinx...

6.7CVSS6.6AI score0.0157EPSS
Exploits5
0day.today
0day.today
added 2023/03/28 12:0 a.m.256 views

RSA NetWitness Endpoint EDR Agent 12.x Incorrect Access Control / Code Execution

RSA NetWitness Endpoint EDR Agent version 12.x suffers from incorrect access controls that allow for code execution. It allows local users to stop the Endpoint Windows agent from sending the events to a SIEM or make the agent run user-supplied commands. + Credits: John Page aka hyp3rlinx + Websit...

6.7CVSS6.7AI score0.0157EPSS
Exploits5
CVE
CVE
added 2023/03/28 12:0 a.m.100 views

CVE-2022-47529

The CVE-2022-47529 issue affects RSA NetWitness Platform’s NetWitness Endpoint EDR Agent prior to version 12.2. It stems from insecure Win32 memory objects that let local or admin Windows users modify the endpoint agent service configuration, enabling actions such as disabling the service or exec...

6.7CVSS6.4AI score0.0157EPSS
Exploits5References8Affected Software1
Cvelist
Cvelist
added 2023/03/28 12:0 a.m.53 views

CVE-2022-47529

Insecure Win32 memory objects in Endpoint Windows Agents in RSA NetWitness Platform before 12.2 allow local and admin Windows user accounts to modify the endpoint agent service configuration: to either disable it completely or run user-supplied code or commands, thereby bypassing tamper-protectio...

6.7AI score0.0157EPSS
Exploits5References8
Packet Storm
Packet Storm
added 2023/03/24 12:0 a.m.240 views

RSA NetWitness Endpoint EDR Agent 12.x Incorrect Access Control / Code Execution

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/RSANETWITNESSEDRAGENTINCORRECTACCESSCONTROLCVE-2022-47529.txt + twitter.com/hyp3rlinx + ISR: ApparitionSec Vendor RSA Security www.netwitness.com Product NetWitness Endpoint...

6.7AI score0.0157EPSS
Exploits5
Rows per page
Query Builder