Privilege Escalation Vulnerability in Elastic Endpoint Security for Windows

Privilege Escalation Vulnerability in Elastic Endpoint Security for Windows

CVE-2022-38775 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

An issue was discovered in the rollback feature of Elastic Endpoint Security for Windows, which could allow unprivileged users to elevate their privileges to those of the LocalSystem account.

Learn more about our User Device Pen Test.