CVE-2022-31199

NVD Published Date: November 08, 2022 at 01:15 AM
NVD Last Modified: November 09, 2022 at 07:33 PM
Download Patch
Vulnerability ID
CVE-2022-31199
Severity
CRITICAL
Severity Score
9.8
Summary
Remote code execution vulnerabilities exist in the Netwrix Auditor User Activity Video Recording component affecting both the Netwrix Auditor server and agents installed on monitored systems. The remote code execution vulnerabilities exist within the underlying protocol used by the component, and potentially allow an unauthenticated remote attacker to execute arbitrary code as the NT AUTHORITY\SYSTEM user on affected systems, including on systems Netwrix Auditor monitors.
Mitigation and Patches
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE ID
CWE-502

Recent Publish

CVE-2022-46169

CVE-2022-27518

CVE-2022-42475

CVE-2022-44877

CVE-2022-47966

CVE-2023-25717

See SecOps Solution
in action

Schedule Demo