Design/Logic Flaw

2023-02-0821:15:00

PRIOn knowledge base

www.prio-n.com

elastic endpoint security

windows

privilege escalation

rollback feature

AI Score

7.5

Confidence

High

EPSS

Percentile

9.0%

JSON

An issue was discovered in the rollback feature of Elastic Endpoint Security for Windows, which could allow unprivileged users to elevate their privileges to those of the LocalSystem account.

CPENameOperatorVersion
endgamelt3.62.3
endpoint_securitylt7.17.9
endpoint_securityge8.0.0
endpoint_securitylt8.5.0

Name	Operator	Version
endgame	lt	3.62.3
endpoint_security	lt	7.17.9
endpoint_security	ge	8.0.0
endpoint_security	lt	8.5.0

References

discuss.elastic.co/t/elastic-7-17-9-8-5-0-and-8-6-1-security-update/324661

www.elastic.co/community/security