Resolved LPE in HitmanPro (CVE-2021-25271)

Volver a la vista general de avisos de seguridad
High
CVE
CVE-2021-25271
Updated:
Producto(s)
HitmanPro
ID de publicación sophos-sa-20211007-hmp-lpe
Versión de artículo 2
Primera publicación
Solución No

Overview

A local privilege escalation vulnerability in HitmanPro was discovered and responsibly disclosed to Sophos. It was reported via the Sophos bug bounty program by an external security researcher. The vulnerability has been fixed. There is no action required for customers, as updates are installed automatically by default.

Sophos would like to thank Michael Bourque (@downwithupsec) for responsibly disclosing the issues to Sophos.

The remediation prevented local users from reading or writing arbitrary files with administrator privileges. There was no evidence that the vulnerability was exploited and to our knowledge no customers are impacted.

Applies to the following Sophos product(s) and version(s)

  • Sophos HitmanPro prior version Build 318

The Sophos Intercept X family is not impacted by this advisory.

Remediation

  • Fix included in HitmanPro Build 318, released May 31, 2021

Related Information