CVE-2022-48685

HIGH

Logpoint SIEM 7.1.0-7.1.1 - Privilege Escalation via Writable Cron File

Title source: llm

Description

An issue was discovered in Logpoint 7.1 before 7.1.2. The daily executed cron file clean_secbi_old_logs is writable by all users and is executed as root, leading to privilege escalation.

References (1)

Core 1

Core References

Vendor Advisory

https://servicedesk.logpoint.com/hc/en-us/articles/7997112373277-Privilege-Escalation-Through-Cronjob

Scores

CVSS v3 7.7

EPSS 0.0017

EPSS Percentile 6.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-276

Status published

Products (1)

logpoint/siem 7.1.0 - 7.1.2

Published Apr 27, 2024

Tracked Since Feb 18, 2026