CVE-2024-35214 - OpenCVE

A tampering vulnerability in the CylanceOPTICS Windows Installer Package of CylanceOPTICS for Windows version 3.2 and 3.3 could allow an attacker to potentially uninstall CylanceOPTICS from a system thereby leaving it with only the protection of CylancePROTECT.

Attack Vector Local

Attack Complexity High

Privileges Required High

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact total

Vendors	Products
Blackberry	Cylanceoptics

No data.

No data.

References

Link	Providers
https://support.blackberry.com/pkb/s/article/140080

History

Tue, 20 Aug 2024 20:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Blackberry Blackberry cylanceoptics
CPEs		cpe:2.3:a:blackberry:cylanceoptics::::::::
Vendors & Products		Blackberry Blackberry cylanceoptics
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Tue, 20 Aug 2024 17:45:00 +0000

Type	Values Removed	Values Added
Description		A tampering vulnerability in the CylanceOPTICS Windows Installer Package of CylanceOPTICS for Windows version 3.2 and 3.3 could allow an attacker to potentially uninstall CylanceOPTICS from a system thereby leaving it with only the protection of CylancePROTECT.
Title		Vulnerability in CylanceOPTICS Windows Installer Package Impacts CylanceOPTICS for Windows
Weaknesses		CWE-288
References		https://support.blackberry.com/pkb/s/article/140080
Metrics		cvssV4_0 `{'score': 7.1, 'vector': 'CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}`

MITRE

Status: PUBLISHED

Assigner: blackberry

Published: 2024-08-20T17:24:53.815Z

Updated: 2024-09-29T05:02:37.739Z

Reserved: 2024-05-13T21:20:04.327Z

Link: CVE-2024-35214

Vulnrichment

Updated: 2024-09-29T05:02:37.739Z

NVD

Status : Awaiting Analysis

Published: 2024-08-20T18:15:08.497

Modified: 2024-08-21T12:30:33.697

Link: CVE-2024-35214

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-35214", "assignerOrgId": "dbe78b00-5e7b-4fda-8748-329789ecfc5c", "state": "PUBLISHED", "assignerShortName": "blackberry", "dateReserved": "2024-05-13T21:20:04.327Z", "datePublished": "2024-08-20T17:24:53.815Z", "dateUpdated": "2024-09-29T05:02:37.739Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "modules": ["Windows Installer Package"], "platforms": ["Windows"], "product": "CylanceOPTICS for Windows", "vendor": "BlackBerry", "versions": [{"status": "affected", "version": "3.2 and 3.3"}]}], "datePublic": "2024-08-20T17:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">A </span><span style=\"background-color: rgb(255, 255, 255);\">tampering</span> <span style=\"background-color: rgb(255, 255, 255);\">vulnerability in the</span><span style=\"background-color: rgb(255, 255, 255);\"> Cylance</span><span style=\"background-color: rgb(255, 255, 255);\">OPTICS Windows Installer Package of CylanceOPTICS for Windows version 3.2 and 3.3 could allow an attacker to potentially uninstall CylanceOPTICS from a system thereby leaving it with only the protection of CylancePROTECT</span><span style=\"background-color: rgb(255, 255, 255);\">.</span>"}], "value": "A tampering vulnerability in the CylanceOPTICS Windows Installer Package of CylanceOPTICS for Windows version 3.2 and 3.3 could allow an attacker to potentially uninstall CylanceOPTICS from a system thereby leaving it with only the protection of CylancePROTECT."}], "impacts": [{"capecId": "CAPEC-554", "descriptions": [{"lang": "en", "value": "CAPEC-554 Functionality Bypass"}]}], "metrics": [{"cvssV4_0": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "HIGH", "attackRequirements": "NONE", "attackVector": "LOCAL", "baseScore": 7.1, "baseSeverity": "HIGH", "privilegesRequired": "HIGH", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-288", "description": "CWE-288", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "dbe78b00-5e7b-4fda-8748-329789ecfc5c", "shortName": "blackberry", "dateUpdated": "2024-08-20T17:24:53.815Z"}, "references": [{"url": "https://support.blackberry.com/pkb/s/article/140080"}], "source": {"discovery": "UNKNOWN"}, "title": "Vulnerability in CylanceOPTICS Windows Installer Package Impacts CylanceOPTICS for Windows", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"affected": [{"vendor": "blackberry", "product": "cylanceoptics", "cpes": ["cpe:2.3:a:blackberry:cylanceoptics:*:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "3.2", "status": "affected"}, {"version": "3.3", "status": "affected"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-08-20T20:04:49.459656Z", "id": "CVE-2024-35214", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-20T20:09:41.776Z"}}, {"title": "CVE Program Container", "references": [{"url": "http://seclists.org/fulldisclosure/2024/Sep/52"}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-09-29T05:02:37.739Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "http://seclists.org/fulldisclosure/2024/Sep/52"}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-09-29T05:02:37.739Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-35214", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-08-20T20:04:49.459656Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:blackberry:cylanceoptics:*:*:*:*:*:*:*:*"], "vendor": "blackberry", "product": "cylanceoptics", "versions": [{"status": "affected", "version": "3.2"}, {"status": "affected", "version": "3.3"}], "defaultStatus": "unaffected"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-20T20:09:28.497Z"}}], "cna": {"title": "Vulnerability in CylanceOPTICS Windows Installer Package Impacts CylanceOPTICS for Windows", "source": {"discovery": "UNKNOWN"}, "impacts": [{"capecId": "CAPEC-554", "descriptions": [{"lang": "en", "value": "CAPEC-554 Functionality Bypass"}]}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 7.1, "Automatable": "NOT_DEFINED", "attackVector": "LOCAL", "baseSeverity": "HIGH", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "HIGH", "attackRequirements": "NONE", "privilegesRequired": "HIGH", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "BlackBerry", "modules": ["Windows Installer Package"], "product": "CylanceOPTICS for Windows", "versions": [{"status": "affected", "version": "3.2 and 3.3"}], "platforms": ["Windows"], "defaultStatus": "unaffected"}], "datePublic": "2024-08-20T17:00:00.000Z", "references": [{"url": "https://support.blackberry.com/pkb/s/article/140080"}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "A tampering vulnerability in the CylanceOPTICS Windows Installer Package of CylanceOPTICS for Windows version 3.2 and 3.3 could allow an attacker to potentially uninstall CylanceOPTICS from a system thereby leaving it with only the protection of CylancePROTECT.", "supportingMedia": [{"type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">A </span><span style=\"background-color: rgb(255, 255, 255);\">tampering</span> <span style=\"background-color: rgb(255, 255, 255);\">vulnerability in the</span><span style=\"background-color: rgb(255, 255, 255);\"> Cylance</span><span style=\"background-color: rgb(255, 255, 255);\">OPTICS Windows Installer Package of CylanceOPTICS for Windows version 3.2 and 3.3 could allow an attacker to potentially uninstall CylanceOPTICS from a system thereby leaving it with only the protection of CylancePROTECT</span><span style=\"background-color: rgb(255, 255, 255);\">.</span>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-288", "description": "CWE-288"}]}], "providerMetadata": {"orgId": "dbe78b00-5e7b-4fda-8748-329789ecfc5c", "shortName": "blackberry", "dateUpdated": "2024-08-20T17:24:53.815Z"}}}, "cveMetadata": {"cveId": "CVE-2024-35214", "state": "PUBLISHED", "dateUpdated": "2024-09-29T05:02:37.739Z", "dateReserved": "2024-05-13T21:20:04.327Z", "assignerOrgId": "dbe78b00-5e7b-4fda-8748-329789ecfc5c", "datePublished": "2024-08-20T17:24:53.815Z", "assignerShortName": "blackberry"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A tampering vulnerability in the CylanceOPTICS Windows Installer Package of CylanceOPTICS for Windows version 3.2 and 3.3 could allow an attacker to potentially uninstall CylanceOPTICS from a system thereby leaving it with only the protection of CylancePROTECT."}, {"lang": "es", "value": "Una vulnerabilidad de manipulaci\u00f3n en el paquete CylanceOPTICS Windows Installer de CylanceOPTICS para Windows versi\u00f3n 3.2 y 3.3 podr\u00eda permitir a un atacante desinstalar CylanceOPTICS de un sistema, dej\u00e1ndolo as\u00ed solo con la protecci\u00f3n de CylancePROTECT."}], "id": "CVE-2024-35214", "lastModified": "2024-08-21T12:30:33.697", "metrics": {"cvssMetricV40": [{"cvssData": {"attackComplexity": "HIGH", "attackRequirements": "NONE", "attackVector": "LOCAL", "automatable": "NOT_DEFINED", "availabilityRequirements": "NOT_DEFINED", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityRequirements": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirements": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubsequentSystemAvailability": "NOT_DEFINED", "modifiedSubsequentSystemConfidentiality": "NOT_DEFINED", "modifiedSubsequentSystemIntegrity": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnerableSystemAvailability": "NOT_DEFINED", "modifiedVulnerableSystemConfidentiality": "NOT_DEFINED", "modifiedVulnerableSystemIntegrity": "NOT_DEFINED", "privilegesRequired": "HIGH", "providerUrgency": "NOT_DEFINED", "recovery": "NOT_DEFINED", "safety": "NOT_DEFINED", "subsequentSystemAvailability": "NONE", "subsequentSystemConfidentiality": "NONE", "subsequentSystemIntegrity": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnerabilityResponseEffort": "NOT_DEFINED", "vulnerableSystemAvailability": "HIGH", "vulnerableSystemConfidentiality": "HIGH", "vulnerableSystemIntegrity": "HIGH"}, "source": "secure@blackberry.com", "type": "Secondary"}]}, "published": "2024-08-20T18:15:08.497", "references": [{"source": "secure@blackberry.com", "url": "https://support.blackberry.com/pkb/s/article/140080"}], "sourceIdentifier": "secure@blackberry.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-288"}], "source": "secure@blackberry.com", "type": "Secondary"}]}