PT-2025-44589

Netwrix Endpoint Protector formerly known as CoSoSys Endpoint Protector Details on CVE-2025-59796 will be released soon. The vendor has released an announcement and security patch; please update promptly: https://t.co/XNvjTaLOdD https://t.co/LVO6Y32UT1...

EUVD-2014-3869

Malware in sbrugna...

EUVD-2019-4791

Malware in sbrugna...

EUVD-2012-2972

Malware in sbrugna...

CVE-2024-36075

The CoSoSys Endpoint Protector through 5.9.3 and Unify agent through 7.0.6 is susceptible to an arbitrary code execution vulnerability due to the way an archive obtained from the Endpoint Protector or Unify server is extracted on the endpoint. An attacker who is able to modify the archive on the...

CVE-2024-36072

Netwrix CoSoSys Endpoint Protector through 5.9.3 and CoSoSys Unify through 7.0.6 contain a remote code execution vulnerability in the logging component of the Endpoint Protector and Unify server application which allows an unauthenticated remote attacker to send a malicious request, resulting in...

CVE-2019-13285

CoSoSys Endpoint Protector 5.1.0.2 allows Host Header Injection...

CVE-2014-3932

SQL injection vulnerability in the device registration component in wsf/webservice.php in CoSoSys Endpoint Protector 4 4.3.0.4 and 4.4.0.2 allows remote attackers to execute arbitrary SQL commands via unspecified parameters...

CVE-2024-36075

The CoSoSys Endpoint Protector through 5.9.3 and Unify agent through 7.0.6 is susceptible to an arbitrary code execution vulnerability due to the way an archive obtained from the Endpoint Protector or Unify server is extracted on the endpoint. An attacker who is able to modify the archive on the...

CVE-2024-36073

Netwrix CoSoSys Endpoint Protector through 5.9.3 and CoSoSys Unify through 7.0.6 contain a remote code execution vulnerability in the shadowing component of the Endpoint Protector and Unify agent which allows an attacker with administrative access to the Endpoint Protector or Unify server to...

CVE-2024-36074

Netwrix CoSoSys Endpoint Protector through 5.9.3 and CoSoSys Unify through 7.0.6 contain a remote code execution vulnerability in the Endpoint Protector and Unify agent in the way that the EasyLock dependency is acquired from the server. An attacker with administrative access to the Endpoint...

CVE-2024-36073

Netwrix CoSoSys Endpoint Protector (v5.9.3 and earlier) and CoSoSys Unify (v7.0.6 and earlier) contain a remote code execution vulnerability in the shadowing component of the Endpoint Protector/Unify agent. An attacker with administrative access to the Endpoint Protector or Unify server can overw...

CVE-2024-36073

Netwrix CoSoSys Endpoint Protector through 5.9.3 and CoSoSys Unify through 7.0.6 contain a remote code execution vulnerability in the shadowing component of the Endpoint Protector and Unify agent which allows an attacker with administrative access to the Endpoint Protector or Unify server to...

CVE-2024-36074

Netwrix CoSoSys Endpoint Protector through 5.9.3 and CoSoSys Unify through 7.0.6 contain a remote code execution vulnerability in the Endpoint Protector and Unify agent in the way that the EasyLock dependency is acquired from the server. An attacker with administrative access to the Endpoint...

CVE-2024-36075

The CoSoSys Endpoint Protector through 5.9.3 and Unify agent through 7.0.6 is susceptible to an arbitrary code execution vulnerability due to the way an archive obtained from the Endpoint Protector or Unify server is extracted on the endpoint. An attacker who is able to modify the archive on the...

PT-2024-26882 · Cososys +1 · Cososys Unify +1

Name of the Vulnerable Software and Affected Versions: Netwrix CoSoSys Endpoint Protector versions 5.9.3 and earlier CoSoSys Unify versions 7.0.6 and earlier Description: The issue allows an attacker with administrative access to the server to overwrite sensitive configuration and subsequently...

PT-2024-26884 · Cososys · Cososys Endpoint Protector

Name of the Vulnerable Software and Affected Versions: CoSoSys Endpoint Protector versions 5.9.3 and earlier Unify agent versions 7.0.6 and earlier Description: The issue is related to the extraction of an archive obtained from the server on the endpoint, which can lead to arbitrary code executio...

CVE-2024-36072

Netwrix CoSoSys Endpoint Protector through 5.9.3 and CoSoSys Unify through 7.0.6 contain a remote code execution vulnerability in the logging component of the Endpoint Protector and Unify server application which allows an unauthenticated remote attacker to send a malicious request, resulting in...

CVE-2024-36072

The CVE-2024-36072 entry covers Netwrix CoSoSys Endpoint Protector (versions up to and including 5.9.3) and CoSoSys Unify (up to and including 7.0.6). A remote code execution flaw is located in the logging component of the Endpoint Protector/Unify server, allowing an unauthenticated attacker to s...

PT-2024-26881 · Cososys +1 · Cososys Unify +1

Name of the Vulnerable Software and Affected Versions: Netwrix CoSoSys Endpoint Protector versions 5.9.3 and earlier CoSoSys Unify versions 7.0.6 and earlier Description: The issue concerns a remote code execution vulnerability in the logging component of the server application. This vulnerabilit...