CVE-2022-23714
First published: Wed Jul 06 2022(Updated: )
A local privilege escalation (LPE) issue was discovered in the ransomware canaries features of Elastic Endpoint Security for Windows, which could allow unprivileged users to elevate their privileges to those of the LocalSystem account.
Credit: bressers@elastic.co
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Elastic Endpoint Security | >=7.13.0<=7.17.4 | |
| Elastic Endpoint Security | >=8.0.0<=8.2.3 | |
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2022-23714.
What is the severity of CVE-2022-23714?
CVE-2022-23714 has a severity value of 7.8, which is considered high.
What is the affected software?
The affected software is Elastic Endpoint Security for Windows versions 7.13.0 to 7.17.4, and versions 8.0.0 to 8.2.3.
How can unprivileged users exploit CVE-2022-23714?
Unprivileged users can exploit CVE-2022-23714 to elevate their privileges to those of the LocalSystem account.
Are there any references for CVE-2022-23714?
Yes, you can find more information about CVE-2022-23714 at the following references: - [Elastic Discuss](https://discuss.elastic.co/t/elastic-8-3-1-8-3-0-and-7-17-5-security-update/308613) - [Elastic Security](https://www.elastic.co/community/security)
- collector/nvd-index
- vendor/elastic
- canonical/elastic endpoint security
- version/elastic endpoint security/7.13.0
- version/elastic endpoint security/7.17.4
- version/elastic endpoint security/8.0.0
- version/elastic endpoint security/8.2.3
- vendor/microsoft
- canonical/microsoft windows