CVE-2023-28143

EPSS 0.04%
Veröffentlicht 18.04.2023 16:15:09
Zuletzt bearbeitet 21.11.2024 07:54:28
Quelle bugreport@qualys.com
CVE-Watchlists
Login
Unerledigt
Login

Qualys Cloud Agent for macOS (versions 2.5.1-75 before 3.7)
installer allows a local escalation of privilege bounded only to the time of
installation and only on older macOSX (macOS 10.15 and older) versions.
Attackers may exploit incorrect file permissions to give them ROOT command
execution privileges on the host. During the install of the PKG, a step in the
process involves extracting the package and copying files to several
directories. Attackers may gain writable access to files during the install of
PKG when extraction of the package and copying files to several directories,
enabling a local escalation of privilege.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Qualys ≫ Cloud Agent SwPlatformmacos Version >= 2.5.1-75 < 3.7

Apple ≫ macOS X Version <= 10.15

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.127

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7	1	5.9	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
bugreport@qualys.com	6.7	0.8	5.9	CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

CWE-426 Untrusted Search Path

The product searches for critical resources using an externally-supplied search path that can point to resources that are not under the product's direct control.

https://qualys.com/security-advisories

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-28143

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-28143

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-28143

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2023-28143