Improper Privilege Management vulnerability in WatchGuard EPDR, Panda AD360 and Panda Dome on Windows (PSANHost.exe module) allows arbitrary file delete with SYSTEM permissions. This issue affects EPDR: before 8.00.23.0000; Panda AD360: before 8.00.23.0000; Panda Dome: before 22.03.00.
History

Fri, 08 Nov 2024 16:15:00 +0000

Type Values Removed Values Added
First Time appeared Watchgua
Watchgua panda Dome Firmware
Watchguard
Watchguard epdr Firmware
Watchguard panda Ad360 Firmware
CPEs cpe:2.3:o:watchgua:panda_dome_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:watchguard:epdr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:watchguard:panda_ad360_firmware:*:*:*:*:*:*:*:*
Vendors & Products Watchgua
Watchgua panda Dome Firmware
Watchguard
Watchguard epdr Firmware
Watchguard panda Ad360 Firmware
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Thu, 07 Nov 2024 23:30:00 +0000

Type Values Removed Values Added
Description Improper Privilege Management vulnerability in WatchGuard EPDR, Panda AD360 and Panda Dome on Windows (PSANHost.exe module) allows arbitrary file delete with SYSTEM permissions. This issue affects EPDR: before 8.00.23.0000; Panda AD360: before 8.00.23.0000; Panda Dome: before 22.03.00.
Title WatchGuard Endpoint Protection Privilege Escalation in PSANHost Enables Arbitrary File Delete as SYSTEM
Weaknesses CWE-269
References
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: WatchGuard

Published: 2024-11-07T23:27:50.279Z

Updated: 2024-11-08T15:28:51.297Z

Reserved: 2024-09-04T14:08:29.933Z

Link: CVE-2024-8424

cve-icon Vulnrichment

Updated: 2024-11-08T15:28:43.363Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-11-08T00:15:15.807

Modified: 2024-11-08T19:01:03.880

Link: CVE-2024-8424

cve-icon Redhat

No data.