vulnerability

Netwrix Auditor: CVE-2022-31199: Remote Code Execution

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
10	(AV:N/AC:L/Au:N/C:C/I:C/A:C)	2022-07-19	2022-07-19	2023-02-08

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

2022-07-19

Added

2022-07-19

Modified

2023-02-08

Description

Remote code execution vulnerabilities exist in the Netwrix Auditor User Activity Video Recording component affecting both the Netwrix Auditor server and agents installed on monitored systems. The remote code execution vulnerabilities exist within the underlying protocol used by the component, and potentially allow an unauthenticated remote attacker to execute arbitrary code as the NT AUTHORITY\SYSTEM user on affected systems, including on systems Netwrix Auditor monitors.

Solution

netwrix-auditor-cve-2022-31199

References

CVE-2022-31199
https://attackerkb.com/topics/CVE-2022-31199
URL-https://bishopfox.com/blog/netwrix-auditor-advisory

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today