CVE-2022-31199 - Netwrix Auditor Insecure Object Deserialization Vulnerability

漏洞名称

Netwrix Auditor Insecure Object Deserialization Vulnerability

描述

Netwrix Auditor User Activity Video Recording component contains an insecure objection deserialization vulnerability that allows an unauthenticated, remote attacker to execute code as the NT AUTHORITY\SYSTEM user. Successful exploitation requires that the attacker is able to reach port 9004/TCP, which is commonly blocked by standard enterprise firewalling.

已知用于勒索软件活动吗？

Known

采集行动

Apply updates per vendor instructions or discontinue use of the product if updates are unavailable.

其他说明

Patch application requires login to customer portal: https://security.netwrix.com/Account/SignIn?ReturnUrl=%2FAdvisories%2FADV-2022-003

https://nvd.nist.gov/vuln/detail/CVE-2022-31199