Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Improper preservation of permissions in Elastic Defend on Windows hosts can lead to arbitrary files on the system being deleted by the Defend service running as SYSTEM. In some cases, this could result in local privilege escalation.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
权限预留不恰当
Vulnerability Title
Elastic Defend 安全漏洞
Vulnerability Description
Elastic Defend是荷兰Elastic公司的一款应用程序。提供预防、检测和响应功能,以及对 EPP、EDR、SIEM 和安全分析的深度可见性。 Elastic Defend存在安全漏洞,该漏洞源于Windows主机上权限保存不当,可能导致Defend服务删除系统上的任意文件,在某些情况下可能导致本地权限提升。
CVSS Information
N/A
Vulnerability Type
N/A