According to SentinelOne, the two vulnerabilities, tracked as CVE-2022-26522 and CVE-2022-26523, impacted both Avast and AVG antiviruses — Avast acquired AVG in 2016 and the flaws affect a shared anti-rootkit driver. The security holes were reported to Avast in December and they were patched in February with the release of version 22.1. Both SentinelOne and […]
Posts Tagged ‘SentinelOne’
SentinelOne researchers have unearthed a number of privilege escalation vulnerabilities in Eltima SDK, a library used by many cloud desktop and USB sharing services like Amazon Workspaces, NoMachine and Accops to allow users to connect and share local devices over network. “These vulnerabilities allow attackers to escalate privileges enabling them to disable security products, overwrite […]
The issues were identified in an Eltima product called ‘USB Over Ethernet’, which provides remote USB redirection functionality and which is implemented in some cloud products with several modifications. In Amazon WorkSpaces, SentinelOne’s SentinelLabs explains, the library allows users to redirect USB devices so they can connect them directly from a remote desktop. Read More
FRIDAY, APRIL 26, 2024
WHITE PAPERS
Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...
ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...
Latest Comments