A local privilege escalation (LPE) issue was discovered in the ransomware canaries features of Elastic Endpoint Security for Windows, which could allow unprivileged users to elevate their privileges to those of the LocalSystem account.
References
Link | Resource |
---|---|
https://discuss.elastic.co/t/elastic-8-3-1-8-3-0-and-7-17-5-security-update/308613 | Mitigation Vendor Advisory |
https://www.elastic.co/community/security | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
03 Jul 2023, 20:34
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-noinfo |
Information
Published : 2022-07-06 14:15
Updated : 2024-02-28 19:29
NVD link : CVE-2022-23714
Mitre link : CVE-2022-23714
CVE.ORG link : CVE-2022-23714
JSON object : View
Products Affected
microsoft
- windows
elastic
- endpoint_security
CWE