First published: Thu Nov 29 2018(Updated: )
The agent in OSSEC through 3.1.0 on Windows allows local users to gain NT AUTHORITY\SYSTEM access via Directory Traversal by leveraging full access to the associated OSSEC server.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Ossec Ossec | <=3.1.0 | |
Microsoft Windows | ||
Wazuh Wazuh | >=1.0.0<=2.1.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.