CVE-2024-7242
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Nov 22, 2024
Updated: Nov 26, 2024
CWE ID 59
Summary
CVE-2024-7242 is a privileged escalation vulnerability affecting Panda Security Dome. Local attackers can exploit this issue by creating a junction in the PSANHost executable, enabling them to delete arbitrary files and escalate privileges. To initiate an attack, an adversary must initially gain the ability to execute low-privileged code on the target system. Successful exploitation grants the attacker the SYSTEM context, enabling them to execute arbitrary code with elevated privileges.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share