CVE-2024-6975

HIGH

Catonetworks Cato Client < 5.10.34 - Untrusted Search Path

Title source: rule
STIX 2.1

Description

Cato Networks Windows SDP Client Local Privilege Escalation via openssl configuration file. This issue affects SDP Client before 5.10.34.

References (1)

Scores

CVSS v3 8.8
EPSS 0.0007
EPSS Percentile 22.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-426
Status published
Products (1)
catonetworks/cato_client < 5.10.34
Published Jul 31, 2024
Tracked Since Feb 18, 2026