CVE Vulnerabilities

CVE-2024-36072

Logging of Excessive Data

Published: Jun 27, 2024 | Modified: Jul 09, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

Netwrix CoSoSys Endpoint Protector through 5.9.3 and CoSoSys Unify through 7.0.6 contain a remote code execution vulnerability in the logging component of the Endpoint Protector and Unify server application which allows an unauthenticated remote attacker to send a malicious request, resulting in the ability to execute system commands with root privileges.

Weakness

The product logs too much information, making log files hard to process and possibly hindering recovery efforts or forensic analysis after an attack.

Potential Mitigations

References