2 matches found
CVE-2022-38777
CVE-2022-38777 concerns a privilege-escalation in Elastic Endpoint Security for Windows due to a flaw in the rollback/quarantine workflow. The issue could allow an unprivileged user to elevate to LocalSystem by exploiting insufficient access control in the quarantine-related logic. Affected softw...
CVE-2022-38774
Elastic Endpoint Security and Elastic Endgame for Windows contain a Local Privilege Escalation in the quarantine feature. Affected versions: Elastic Security up to 7.17.6 and 8.3.3; Elastic Endgame up to 3.62.2. Fixes are provided in Endpoint: 7.17.7 and 8.4.0; Endgame: 3.62.3. The advisory notes...