39 matches found
CVE-2023-26238
An issue was discovered in WatchGuard EPDR 8.0.21.0002. It is possible to enable or disable defensive capabilities by sending a crafted message to a named pipe...
CVE-2023-26239
An issue was discovered in WatchGuard EPDR 8.0.21.0002. Due to a weak implementation of a password check, it is possible to obtain credentials to access the management console as a non-privileged user...
CVE-2023-26239
An issue was discovered in WatchGuard EPDR 8.0.21.0002. Due to a weak implementation of a password check, it is possible to obtain credentials to access the management console as a non-privileged user...
CVE-2023-26236
An issue was discovered in WatchGuard EPDR 8.0.21.0002. Due to a weak implementation of message handling between WatchGuard EPDR processes, it is possible to perform a Local Privilege Escalation on Windows by sending a crafted message to a named pipe...
Code injection
An issue was discovered in WatchGuard EPDR 8.0.21.0002. It is possible to enable or disable defensive capabilities by sending a crafted message to a named pipe...
Design/Logic Flaw
An issue was discovered in WatchGuard EPDR 8.0.21.0002. It is possible to bypass the defensive capabilities by adding a registry key as SYSTEM...
CVE-2023-26238
An issue was discovered in WatchGuard EPDR 8.0.21.0002. It is possible to enable or disable defensive capabilities by sending a crafted message to a named pipe...
CVE-2023-26237
An issue was discovered in WatchGuard EPDR 8.0.21.0002. It is possible to bypass the defensive capabilities by adding a registry key as SYSTEM...
WatchGuard EPDR Security Vulnerability
WatchGuard EPDR is an application from WatchGuard USA, Inc. prevents, detects and responds to any type of known and unknown malware as well as fileless and malware-free attacks. A security vulnerability exists in WatchGuard EPDR version 8.0.21.0002, which stems from a weak implementation of messa...
CVE-2023-26237
An issue was discovered in WatchGuard EPDR 8.0.21.0002. It is possible to bypass the defensive capabilities by adding a registry key as SYSTEM...
CVE-2023-26238
An issue was discovered in WatchGuard EPDR 8.0.21.0002. It is possible to enable or disable defensive capabilities by sending a crafted message to a named pipe...
CVE-2023-26236
An issue was discovered in WatchGuard EPDR 8.0.21.0002. Due to a weak implementation of message handling between WatchGuard EPDR processes, it is possible to perform a Local Privilege Escalation on Windows by sending a crafted message to a named pipe...
CVE-2023-26239
An issue was discovered in WatchGuard EPDR 8.0.21.0002. Due to a weak implementation of a password check, it is possible to obtain credentials to access the management console as a non-privileged user...
CVE-2023-26239
Affected software: WatchGuard EPDR 8.0.21.0002. Vulnerability: weak implementation of a password check that can allow a non-privileged user to obtain credentials to access the management console. This is described across multiple sources in the connected documents as a credential-access weakness ...
CVE-2023-26236
WatchGuard EPDR 8.0.21.0002 is affected by a Local Privilege Escalation due to a weak implementation of inter-process message handling, enabling crafted messages to a named pipe to escalate privileges on Windows. Affected component: Protection Agent (EPDR) and related Panda AD360 references. Publ...
CVE-2023-26238
WatchGuard EPDR 8.0.21.0002 is affected by CVE-2023-26238, where a crafted message to a named pipe allows an attacker to enable or disable defensive capabilities locally. The issue originates from the named pipe interface and the ability to affect the product’s defenses without user interaction. ...
CVE-2023-26236
An issue was discovered in WatchGuard EPDR 8.0.21.0002. Due to a weak implementation of message handling between WatchGuard EPDR processes, it is possible to perform a Local Privilege Escalation on Windows by sending a crafted message to a named pipe...
CVE-2023-26239
An issue was discovered in WatchGuard EPDR 8.0.21.0002. Due to a weak implementation of a password check, it is possible to obtain credentials to access the management console as a non-privileged user...
CVE-2023-26237
CVE-2023-26237 affects WatchGuard EPDR 8.0.21.0002, where an attacker can bypass defensive capabilities by adding a registry key as SYSTEM. The issue is described as a local-impact bypass of protections, with CVSSv3.1 metrics indicating Local access, Low attack complexity, Privileges Required: Hi...