CVE-2022-35412 : Digital Guardian Agent 7.7.4.0042 allows an administrator (who ordinarily does not have a supported way to uninstall the

Digital Guardian Agent 7.7.4.0042 allows an administrator (who ordinarily does not have a supported way to uninstall the product) to disable some of the agent functionality and then exfiltrate files to an external USB device.

Published 2022-07-08 20:15:08

Updated 2022-07-16 01:45:53

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2022-35412

Probability of exploitation activity in the next 30 days: 0.04%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 10 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2022-35412

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
3.6	LOW	AV:L/AC:L/Au:N/C:P/I:P/A:N	3.9	4.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: None
5.1	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N	0.8	4.2	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: High User Interaction: None Scope: Unchanged Confidentiality: High Integrity: Low Availability: None

References for CVE-2022-35412

https://www.tenforums.com/tutorials/46259-block-unblock-legacy-file-system-filter-drivers-windows-10-a.html

Please Wait... | Cloudflare
Third Party Advisory
https://github.com/i014n/DigitalGuardian-DLP-Agent-vulnerability

Page not found · GitHub · GitHub
Broken Link

Products affected by CVE-2022-35412

Digitalguardian » Digital Guardian » Version: 7.7.4.0042
cpe:2.3:a:digitalguardian:digital_guardian:7.7.4.0042:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2022-35412

Exploit prediction scoring system (EPSS) score for CVE-2022-35412

CVSS scores for CVE-2022-35412

References for CVE-2022-35412

Products affected by CVE-2022-35412