Netwrix CoSoSys Endpoint Protector through 5.9.3 and CoSoSys Unify through 7.0.6 contain a remote code execution vulnerability in the application configuration component of the Endpoint Protector and Unify agent which allows a remote, unauthenticated attacker to manipulate the configuration of either their own or another client endpoint resulting in the bypass of certain configuration options. Manipulation of the application configuration can result in local policy bypass and in some scenarios remote code execution.
CVSS
No CVSS.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2024-06-27T00:00:00
Updated: 2024-07-09T19:14:04.008303
Reserved: 2024-05-19T00:00:00
Link: CVE-2024-36075
JSON object: View
NVD Information
Status : Received
Published: 2024-06-27T21:15:15.610
Modified: 2024-06-27T21:15:15.610
Link: CVE-2024-36075
JSON object: View
Redhat Information
No data.
CWE
No CWE.