Privilege Escalation Vulnerability in Corero SecureWatch Managed Services 9.7.2.0020

Privilege Escalation Vulnerability in Corero SecureWatch Managed Services 9.7.2.0020

CVE-2021-38137 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Corero SecureWatch Managed Services 9.7.2.0020 does not correctly check swa-monitor and cns-monitor user’s privileges, allowing a user to perform actions not belonging to his role.

Learn more about our User Device Pen Test.