logo

CVE-2022-31199 - Netwrix Auditor Insecure Object Deserialization Vulnerability

CVE-2022-31199

Netwrix | Auditor

  • Date Added:
  • 2023-07-11
  • Due Date:
  • 2023-08-01
Vulnerability Name

Netwrix Auditor Insecure Object Deserialization Vulnerability

Description

Netwrix Auditor User Activity Video Recording component contains an insecure objection deserialization vulnerability that allows an unauthenticated, remote attacker to execute code as the NT AUTHORITY\SYSTEM user. Successful exploitation requires that the attacker is able to reach port 9004/TCP, which is commonly blocked by standard enterprise firewalling.

Known To Be Used in Ransomware Campaigns?

Known

Action

Apply updates per vendor instructions or discontinue use of the product if updates are unavailable.

Additional Notes
Patch application requires login to customer portal: https://security.netwrix.com/Account/SignIn?ReturnUrl=%2FAdvisories%2FADV-2022-003; https://nvd.nist.gov/vuln/detail/CVE-2022-31199

Free security scan for your website