Cloud Agent Security Vulnerabilities
An issue was discovered in Qualys Cloud Agent 4.8.0-49. It writes "ps auxwwe" output to the /var/log/qualys/qualys-cloud-agent-scan.log file. This may, for example, unexpectedly write credentials (from environment variables) to disk in cleartext. NOTE: there are no common circumstances in which qua...
5.5CVSS
5.9AI Score
0.0004EPSS
An Executable Hijacking condition exists in theQualys Cloud Agent for Windows platform in versions before 4.5.3.1. Attackersmay load a malicious copy of a Dependency Link Library (DLL) via a localattack vector instead of the DLL that the application was expecting, whenprocesses are running with esc...
7CVSS
6.7AI Score
0.001EPSS
An NTFS Junction condition exists in the Qualys Cloud Agentfor Windows platform in versions before 4.8.0.31. Attackers may write files toarbitrary locations via a local attack vector. This allows attackers to assumethe privileges of the process, and they may delete or otherwise on unauthorizedfiles...
6.7CVSS
6.2AI Score
0.0004EPSS
A Race Condition exists in the Qualys Cloud Agent for Windowsplatform in versions from 3.1.3.34 and before 4.5.3.1. This allows attackers toescalate privileges limited on the local machine during uninstallation of theQualys Cloud Agent for Windows. Attackers may gain SYSTEM level privileges onthat ...
7CVSS
6.9AI Score
0.0004EPSS
Qualys Cloud Agent for macOS (versions 2.5.1-75 before 3.7)installer allows a local escalation of privilege bounded only to the time ofinstallation and only on older macOSX (macOS 10.15 and older) versions.Attackers may exploit incorrect file permissions to give them ROOT commandexecution privilege...
7CVSS
7AI Score
0.0004EPSS