CVE-2019-12042 - OpenCVE

Insecure permissions of the section object Global\PandaDevicesAgentSharedMemory and the event Global\PandaDevicesAgentSharedMemoryChange in Panda products before 18.07.03 allow attackers to queue an event (as an encrypted JSON string) to the system service AgentSvc.exe, which leads to privilege escalation when the CmdLineExecute event is queued. This affects Panda Antivirus, Panda Antivirus Pro, Panda Dome, Panda Global Protection, Panda Gold Protection, and Panda Internet Security.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Pandasecurity	Panda Antivirus Panda Antivirus Pro Panda Dome Panda Global Protection Panda Gold Protection Panda Internet Security

Configuration 1 [-]

OR	cpe:2.3:a:pandasecurity:panda_antivirus::::::::
	cpe:2.3:a:pandasecurity:panda_antivirus_pro::::::::
	cpe:2.3:a:pandasecurity:panda_dome::::::::
	cpe:2.3:a:pandasecurity:panda_global_protection::::::::
	cpe:2.3:a:pandasecurity:panda_gold_protection::::::::
	cpe:2.3:a:pandasecurity:panda_internet_security::::::::

No data.

References

Link	Providers
https://github.com/SouhailHammou/Panda-Antivirus-LPE
https://rce4fun.blogspot.com/2019/05/panda-antivirus-local-privilege.html
https://www.pandasecurity.com/usa/support/card?id=100063

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-05-23T13:30:44

Updated: 2024-08-04T23:10:30.186Z

Reserved: 2019-05-13T00:00:00

Link: CVE-2019-12042

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2019-05-23T14:29:07.673

Modified: 2020-08-24T17:37:01.140

Link: CVE-2019-12042

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2019-05-14T00:00:00", "descriptions": [{"lang": "en", "value": "Insecure permissions of the section object Global\\PandaDevicesAgentSharedMemory and the event Global\\PandaDevicesAgentSharedMemoryChange in Panda products before 18.07.03 allow attackers to queue an event (as an encrypted JSON string) to the system service AgentSvc.exe, which leads to privilege escalation when the CmdLineExecute event is queued. This affects Panda Antivirus, Panda Antivirus Pro, Panda Dome, Panda Global Protection, Panda Gold Protection, and Panda Internet Security."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2019-05-23T13:30:44", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://github.com/SouhailHammou/Panda-Antivirus-LPE"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://www.pandasecurity.com/usa/support/card?id=100063"}, {"tags": ["x_refsource_MISC"], "url": "https://rce4fun.blogspot.com/2019/05/panda-antivirus-local-privilege.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2019-12042", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Insecure permissions of the section object Global\\PandaDevicesAgentSharedMemory and the event Global\\PandaDevicesAgentSharedMemoryChange in Panda products before 18.07.03 allow attackers to queue an event (as an encrypted JSON string) to the system service AgentSvc.exe, which leads to privilege escalation when the CmdLineExecute event is queued. This affects Panda Antivirus, Panda Antivirus Pro, Panda Dome, Panda Global Protection, Panda Gold Protection, and Panda Internet Security."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://github.com/SouhailHammou/Panda-Antivirus-LPE", "refsource": "MISC", "url": "https://github.com/SouhailHammou/Panda-Antivirus-LPE"}, {"name": "https://www.pandasecurity.com/usa/support/card?id=100063", "refsource": "CONFIRM", "url": "https://www.pandasecurity.com/usa/support/card?id=100063"}, {"name": "https://rce4fun.blogspot.com/2019/05/panda-antivirus-local-privilege.html", "refsource": "MISC", "url": "https://rce4fun.blogspot.com/2019/05/panda-antivirus-local-privilege.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T23:10:30.186Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/SouhailHammou/Panda-Antivirus-LPE"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://www.pandasecurity.com/usa/support/card?id=100063"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://rce4fun.blogspot.com/2019/05/panda-antivirus-local-privilege.html"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2019-12042", "datePublished": "2019-05-23T13:30:44", "dateReserved": "2019-05-13T00:00:00", "dateUpdated": "2024-08-04T23:10:30.186Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:pandasecurity:panda_antivirus:*:*:*:*:*:*:*:*", "matchCriteriaId": "08FE25D1-0BAA-4485-BB5B-38D5914D636F", "versionEndExcluding": "18.07.03", "vulnerable": true}, {"criteria": "cpe:2.3:a:pandasecurity:panda_antivirus_pro:*:*:*:*:*:*:*:*", "matchCriteriaId": "3617D2AB-18DF-4DC8-9A7F-7563A700084E", "versionEndExcluding": "18.07.03", "vulnerable": true}, {"criteria": "cpe:2.3:a:pandasecurity:panda_dome:*:*:*:*:*:*:*:*", "matchCriteriaId": "A6AE875C-BD9C-45A8-89B1-AF1328D61EC0", "versionEndExcluding": "18.07.03", "vulnerable": true}, {"criteria": "cpe:2.3:a:pandasecurity:panda_global_protection:*:*:*:*:*:*:*:*", "matchCriteriaId": "1781B26F-3ED4-4854-90F1-B3EB880EDEA5", "versionEndExcluding": "18.07.03", "vulnerable": true}, {"criteria": "cpe:2.3:a:pandasecurity:panda_gold_protection:*:*:*:*:*:*:*:*", "matchCriteriaId": "798756C5-D99A-46FA-87F8-BA8E50EEC5E2", "versionEndExcluding": "18.07.03", "vulnerable": true}, {"criteria": "cpe:2.3:a:pandasecurity:panda_internet_security:*:*:*:*:*:*:*:*", "matchCriteriaId": "8A0CA4F5-BCA1-4272-ACC9-2D2941944978", "versionEndExcluding": "18.07.03", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Insecure permissions of the section object Global\\PandaDevicesAgentSharedMemory and the event Global\\PandaDevicesAgentSharedMemoryChange in Panda products before 18.07.03 allow attackers to queue an event (as an encrypted JSON string) to the system service AgentSvc.exe, which leads to privilege escalation when the CmdLineExecute event is queued. This affects Panda Antivirus, Panda Antivirus Pro, Panda Dome, Panda Global Protection, Panda Gold Protection, and Panda Internet Security."}, {"lang": "es", "value": "Los permisos no seguros del objeto de la secci\u00f3n Global\\PandaDevicesAgentSharedMemory y el evento Global\\PandaDevicesAgentSharedMemoryChange en los productos de Panda antes de la versi\u00f3n 18.07.03, permiten que los atacantes pongan en cola un evento (como una cadena cifrada JSON) al servicio del sistema AgentSvc.exe, lo que lleva a una escalada de privilegios cuando el evento CmdLineExecute est\u00e1 en cola. Esto afecta a Panda Antivirus, Panda Antivirus Pro, Panda Dome, Panda Global Protection, Panda Gold Protection y Panda Internet Security."}], "id": "CVE-2019-12042", "lastModified": "2020-08-24T17:37:01.140", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-05-23T14:29:07.673", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://github.com/SouhailHammou/Panda-Antivirus-LPE"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://rce4fun.blogspot.com/2019/05/panda-antivirus-local-privilege.html"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "https://www.pandasecurity.com/usa/support/card?id=100063"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-732"}], "source": "nvd@nist.gov", "type": "Primary"}]}