CVE-2024-22795

HIGH

Forescout SecureConnector <11.3.06.0063 - Privilege Escalation

Title source: llm

Description

Insecure Permissions vulnerability in Forescout SecureConnector v.11.3.06.0063 allows a local attacker to escalate privileges via the Recheck Compliance Status component.

References (3)

Core 3

Core References

Product

https://www.forescout.com/

Third Party Advisory

https://gist.github.com/Hagrid29/aea0dc35a1e87813dbbb7b317853d023

Exploit, Vendor Advisory

https://github.com/Hagrid29/ForeScout-SecureConnector-EoP

View Exploit ZIP pw:eip

Scores

CVSS v3 7.0

EPSS 0.0013

EPSS Percentile 31.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-269

Status published

Products (1)

forescout/secureconnector 11.3.06.0063

Published Feb 08, 2024

Tracked Since Feb 18, 2026