CVE-2022-23714

Summary

A local privilege escalation (LPE) issue was discovered in the ransomware canaries features of Elastic Endpoint Security for Windows, which could allow unprivileged users to elevate their privileges to those of the LocalSystem account.

Affected Software

VendorProductVersion RangeStatus
ElasticEndpoint SecurityVersions 7.13.0 through 7.17.4 and 8.0.0 through 8.2.3affected

Weaknesses

  • CWE-264: CWE-264

ADP Enrichment

CVE Program Container

Additional References

References