Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2022-2841

Published: 22/08/2022 Updated: 11/04/2024
CVSS v3 Base Score: 2.7 | Impact Score: 1.4 | Exploitability Score: 1.2
VMScore: 0
Subscribe to Crowdstrike

Vulnerability Summary

A vulnerability was found in CrowdStrike Falcon 6.31.14505.0/6.42.15610/6.44.15806. It has been classified as problematic. Affected is an unknown function of the component Uninstallation Handler. The manipulation leads to missing authorization. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 6.40.15409, 6.42.15611 and 6.44.15807 is able to address this issue. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-206880.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

crowdstrike falcon 6.42.15610

crowdstrike falcon 6.31.14505.0

crowdstrike falcon 6.44.15806

Exploits

Exploit DB: CrowdStrike Falcon Agent 6.44.15806 Uninstall Issue
CrowdStrike Falcon Agent version 64415806 has an uninstall bypass flaw that works without an installation token ...

Github Repositories

https://github.com/gmh5225/CVE-2022-44721-CsFalconUninstaller

CVE-2022-44721 Crowdstrike Falcon Uninstaller CrowdStrike Falcon is a cloud-powered endpoint detection and response (EDR) and antivirus (AV) solution On each end-device a kernel level managed sensor is deployed and makes use of the cloud-based capabilities The sensor can be configured with an uninstall protection It prevents the uninstallation of CrowdStrike Falcon sensor on

References

NVD-CWE-Otherhttps://www.modzero.com/modlog/archives/2022/08/22/ridiculous_vulnerability_disclosure_process_with_crowdstrike_falcon_sensor/index.htmlhttps://www.modzero.com/advisories/MZ-22-02-CrowdStrike-FalconSensor.txthttps://youtu.be/3If-Fqwx-4shttps://vuldb.com/?id.206880https://vuldb.com/?ctiid.206880https://github.com/gmh5225/CVE-2022-44721-CsFalconUninstallerhttps://nvd.nist.govhttps://packetstormsecurity.com/files/171595/CrowdStrike-Falcon-Agent-6.44.15806-Uninstall-Issue.html
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionCVE-2006-4304CVE-2023-26603CVE-2024-28327CVE-2023-50363CVE-2024-21905template injectionCVE-2024-3400cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook