WARNING! Fake news / Disputed / BOGUS

Qualys Cloud Agent Arbitrary Code Execution

2022.09.14
Credit: Daniel Wood
Risk: High
Local: No
Remote: Yes
CWE: N/A

The Unqork Security team discovered multiple security vulnerabilities in the Qualys Cloud Agent, to include arbitrary code execution. CVE-2022-29549 (Arbitrary Code Execution) https://nvd.nist.gov/vuln/detail/CVE-2022-29549 CVE-2022-29550 (Sensitive Information Disclosure) https://nvd.nist.gov/vuln/detail/CVE-2022-29550 Read more: https://www.unqork.com/resources/unqork-and-qualys-partner-to-resolve-zero-day-vulnerabilities https://blog.qualys.com/product-tech/2022/08/15/qualys-security-updates-cloud-agent-for-linux


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2022, cxsecurity.com

 

Back to Top