CyberArk Endpoint Privilege Manager (EPM) through 11.5.3.328 before 2021-12-20 allows a local user to gain elevated privileges via a Trojan horse Procmon64.exe in the user's Temp directory.
References
Link | Resource |
---|---|
https://docs.cyberark.com/Product-Doc/OnlineHelp/EPM-onprem/Latest/en/Content/Release%20Notes/RN-WhatsNew.htm | Vendor Advisory |
https://hencohen10.medium.com/cyberark-endpoint-manager-local-privilege-escalation-cve-2021-44049-67cd5e62c3d2 | Exploit Third Party Advisory |
https://www.cyberark.com/ca21-34/ | Permissions Required Vendor Advisory |
https://www.cyberark.com/product-security/ | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-01-15T14:28:51
Updated: 2022-01-15T14:28:51
Reserved: 2021-11-19T00:00:00
Link: CVE-2021-44049
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-01-15T15:15:19.073
Modified: 2022-07-12T17:42:04.277
Link: CVE-2021-44049
JSON object: View
Redhat Information
No data.
CWE