CVE-2024-8424

WatchGuard Endpoint Protection Privilege Escalation in PSANHost Enables Arbitrary File Delete as SYSTEM

Description

Improper Privilege Management vulnerability in WatchGuard EPDR, Panda AD360 and Panda Dome on Windows (PSANHost.exe module) allows arbitrary file delete with SYSTEM permissions. This issue affects EPDR: before 8.00.23.0000; Panda AD360: before 8.00.23.0000; Panda Dome: before 22.03.00.

INFO

Published Date :

2024-11-07T23:27:50.279Z

Last Modified :

2024-11-08T15:28:51.297Z

Source :

WatchGuard

AFFECTED PRODUCTS

The following products are affected by CVE-2024-8424 vulnerability.

Vendors	Products
Watchgua	Panda Dome Firmware
Watchguard	Epdr Firmware Panda Ad360 Firmware

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-8424.

URL	Resource
https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2024-00017

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact