CVE-2025-4660

5/13/2025 6:15:41 PM

19 روز قبل

16 روز قبل

Reporter :a14582b7-06f4-4d66-8e82-3d7ba3739e88

Modified :5/13/2025 6:15:41 PM

Problem Data :CWE-276,NVD-CWE-Other

Description

A remote code execution vulnerability exists in the Windows agent component of SecureConnector due to improper access controls on a named pipe. The pipe is accessible to the Everyone group and does not restrict remote connections, allowing any network-based attacker to connect without authentication. By interacting with this pipe, an attacker can redirect the agent to communicate with a rogue server that can issue commands via the SecureConnector Agent. This does not impact Linux or OSX Secure Connector.

Cvss Version 3.1

9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector	Network
Attack Complexity	Low
Privileges Required	None
User Interaction	None
Scope	Unchanged
Confidentiality Impact	High
Integrity Impact	High
Availability Impact	High

Cvss Version 4.0

8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/AU:Y/R:U/V:C/RE:M/U:Amber

Attack Vector	Network
Attack Complexity	Low
Privileges Required	Low
User Interaction	None
Vulnerability Complexity	High
Vulnerability Impact	High
Authentication
Remediation Level	Unavailable
Report Confidence	Confirmed
Environmental Score
User Defined

EPSS

Epss Score	0.00195
Epss Percentile	0.42023

ریسک پائین:: این آسیب پذیری احتمال ارائه Exploit پائینی دارد. به روز رسانی و نظارت معمولی را لحاظ نمائید.

پیشنهادات:

به بروزرسانی مداوم سیستم و یا شبکه خود ادامه دهید.
از بروزرسانی های آتی این آسیب پذیری مطلع شوید.

Affected Products (Configurations)

CPE	Vendor	Product	Version Start	Version End
cpe:2.3:a:forescout:secureconnector::::::::	forescout	secureconnector	*	*
cpe:2.3:o:microsoft:windows:-:::::::*	microsoft	windows	-	*

Reference

لینک	منبع	تگ ها
https://forescout.my.site.com/support/s/article/		Permissions Required