CVE-2024-8424

{"id": "CVE-2024-8424", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "5d1c2695-1a31-4499-88ae-e847036fd7e3", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}]}, "published": "2024-11-08T00:15:15.807", "references": [{"url": "https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2024-00017", "source": "5d1c2695-1a31-4499-88ae-e847036fd7e3"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "5d1c2695-1a31-4499-88ae-e847036fd7e3", "description": [{"lang": "en", "value": "CWE-269"}]}], "descriptions": [{"lang": "en", "value": "Improper Privilege Management vulnerability in WatchGuard EPDR, Panda AD360 and Panda Dome on Windows (PSANHost.exe module) allows arbitrary file delete with SYSTEM permissions.\nThis issue affects EPDR: before 8.00.23.0000; Panda AD360: before 8.00.23.0000; Panda Dome: before 22.03.00."}, {"lang": "es", "value": "La vulnerabilidad de administraci\u00f3n incorrecta de privilegios en WatchGuard EPDR, Panda AD360 y Panda Dome en Windows (m\u00f3dulo PSANHost.exe) permite la eliminaci\u00f3n arbitraria de archivos con permisos del SYSTEM. Este problema afecta a EPDR: antes de 8.00.23.0000; Panda AD360: antes de 8.00.23.0000; Panda Dome: antes de 22.03.00."}], "lastModified": "2024-11-08T19:01:03.880", "sourceIdentifier": "5d1c2695-1a31-4499-88ae-e847036fd7e3"}