SB2024081237 - Multiple vulnerabilities in Panda Security Dome
Published: August 12, 2024
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 5 secuirty vulnerabilities.
1) Link following (CVE-ID: CVE-2024-7242)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to insecure link following within the PSANHost executable. A local user can delete arbitrary files and gain elevated privileges on the system.
2) Link following (CVE-ID: CVE-2024-7243)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to insecure link following within the PSANHost executable. A local user can create arbitrary files and gain elevated privileges on the system.
3) Insecure DLL loading (CVE-ID: CVE-2024-7244)
The vulnerability allows a local user to compromise vulnerable system.
The vulnerability exists due to the application loads DLL libraries in an insecure manner within the VPN process. A local user can place a specially crafted .dll file and execute arbitrary code on victim's system with elevated privileges.
4) Incorrect Privilege Assignment (CVE-ID: CVE-2024-7245)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to incorrect privilege assignment within the Hydra Sdk Windows Service. A local user can escalate privileges and execute arbitrary code in the context of SYSTEM.
5) Link following (CVE-ID: CVE-2024-7241)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to insecure link following within the PSANHost service. A local user can create arbitrary files and gain elevated privileges on the system.
Remediation
Cybersecurity Help is not aware of any official remediation provided by the vendor.