Back

CVE-2024-36074

June 27, 2024, 9:15 p.m.

Received
CVE has been recently published to the CVE List and has been received by the NVD.

Products

Netwrix CoSoSys Endpoint Protector

  • up to 5.9.3

CoSoSys Unify

  • up to 7.0.6

Source

cve@mitre.org

Tags

cve@mitre.org
2024-06-27
CVE-2024-36074

CVE-2024-36074 details

Published : June 27, 2024, 9:15 p.m.
Last Modified : June 27, 2024, 9:15 p.m.

Description

Netwrix CoSoSys Endpoint Protector through 5.9.3 and CoSoSys Unify through 7.0.6 contain a remote code execution vulnerability in the Endpoint Protector and Unify agent in the way that the EasyLock dependency is acquired from the server. An attacker with administrative access to the Endpoint Protector or Unify server can cause a client to acquire and execute a malicious file resulting in remote code execution.

CVSS Score

1 2 3 4 5 6 7 8 9 10

Weakness

Weakness Name Description

References

URL Source
https://helpcenter.netwrix.com/bundle/z-kb-articles-salesforce/page/kA0Qk0000001E5lKAE.html cve@mitre.org
This website uses the NVD API, but is not approved or certified by it.