← back
CVE-2022-38775

CVE-2022-38775

CVSS 7.8 HIGHEPSS 0.3%CWE-269
An issue was discovered in the rollback feature of Elastic Endpoint Security for Windows, which could allow unprivileged users to elevate their privileges to those of the LocalSystem account.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected products
Elastic · Elastic Endpoint Security

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://discuss.elastic.co/t/endpoint-security-8-4-1-security-statement/323753https://www.elastic.co/community/security