CVE-2024-6689

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jul 15, 2024
Updated: Jul 16, 2024
CWE ID 749

Summary

CVE-2024-6689 is a local privilege escalation vulnerability affecting the MSI-Installer component in baramundi Management Agent version 23.1.172.0 running on Windows systems. An unprivileged user can exploit this issue to gain SYSTEM-level access, potentially compromising the entire system. This vulnerability poses a significant risk and requires immediate attention from system administrators to apply the available patch or workaround.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share