7.8
CVE-2024-8424
- EPSS 0.19%
- Veröffentlicht 08.11.2024 00:15:15
- Zuletzt bearbeitet 15.04.2026 00:35:42
- Quelle 5d1c2695-1a31-4499-88ae-e84703
- CVE-Watchlists
- Unerledigt
WatchGuard Endpoint Protection Privilege Escalation in PSANHost Enables Arbitrary File Delete as SYSTEM
Improper Privilege Management vulnerability in WatchGuard EPDR, Panda AD360 and Panda Dome on Windows (PSANHost.exe module) allows arbitrary file delete with SYSTEM permissions. This issue affects EPDR: before 8.00.23.0000; Panda AD360: before 8.00.23.0000; Panda Dome: before 22.03.00.
Daten sind bereitgestellt durch das CVE Programm von Authorized Data Publishers (ADP) (Unstrukturiert)
Herstellerwatchguard
≫
Produkt
epdr_firmware
Default Statusunknown
Version
0
Version <
8.00.23.0000
Status
affected
Herstellerwatchguard
≫
Produkt
panda_ad360_firmware
Default Statusunknown
Version
0
Version <
8.00.23.0000
Status
affected
Herstellerwatchgua
≫
Produkt
panda_dome_firmware
Default Statusunknown
Version
0
Version <
22.03.00
Status
affected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.19% | 0.085 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 5d1c2695-1a31-4499-88ae-e847036fd7e3 | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-269 Improper Privilege Management
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2024-00017