An issue exists in Eracent EDA, EPA, EPM, EUA, FLW, and SUM Agent up to and including 10.2.26. The agent executable, when installed for non-root operations (scanning), can be forced to copy files from the filesystem to other locations via Symbolic Link Following.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
eracent eda_agent |
||
eracent epa_agent |
||
eracent epm_agent |
||
eracent eua_agent |
||
eracent flw_agent |
||
eracent sum_agent |