In a recent #APT simulation, #Theori uncovered 4 critical #RCE vulnerabilities in @cososys Endpoint Protector (EPP) that let us fully compromise the server & clients. Here’s a peek:
👾 CVE-2024–36072: Unauthenticated attackers can exploit a logging flaw to execute system commands with root privileges.
👾 CVE-2024–36073: With admin access, attackers can overwrite configurations and execute commands on client endpoints.
👾 CVE-2024–36074: Server access allows attackers to execute malicious files.
👾 CVE-2024–36075: Unauthenticated attackers can manipulate client configurations to potentially bypass security and achieve remote code execution.
Could your server be #hacked the same way? Find out through our blog post!
👉 https://t.co/PslFaFDbcF