all InfoSec news
CVE-2023-28141 (cloud_agent)
April 18, 2023, 4:15 p.m. |
National Vulnerability Database web.nvd.nist.gov
for Windows platform in versions before 4.8.0.31. Attackers may write files to
arbitrary locations via a local attack vector. This allows attackers to assume
the privileges of the process, and they may delete or otherwise on unauthorized
files, allowing for the potential modification or deletion of sensitive files
limited only to that specific directory/file object. This vulnerability is
bounded to the time of installation/uninstallation and can only be exploited locally. …
agent attack attackers attack vector classified cloud cve delete deletion directory disclosure end exploited files installation life local locally may modification ntfs object platform privileges process qualys vulnerability windows
More from web.nvd.nist.gov / National Vulnerability Database
CVE-2023-45955 (lightstrip_firmware)
5 months, 2 weeks ago |
web.nvd.nist.gov
CVE-2023-21380 (android)
5 months, 2 weeks ago |
web.nvd.nist.gov
CVE-2023-21381 (android)
5 months, 2 weeks ago |
web.nvd.nist.gov
CVE-2023-21385 (android)
5 months, 2 weeks ago |
web.nvd.nist.gov
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Engineers
@ D. E. Shaw Research | New York City
Security Engineer, Incident Response
@ Databricks | Remote - Netherlands
Associate Vulnerability Engineer - Mid-Atlantic region (Part-Time)
@ GuidePoint Security LLC | Remote in VA, MD, PA, NC, DE, NJ, or DC
Data Security Architect
@ Accenture Federal Services | Washington, DC
Identity Security Administrator
@ SailPoint | Pune, India