Loading HuntDB...

GHSA-pcp7-7qh2-6c2r

GitHub Security Advisory

⚠ Unreviewed HIGH Has CVE

Advisory Details

CYRISMA Sensor before 444 for Windows has an Insecure Folder and File Permissions vulnerability. A low-privileged user can abuse these issues to escalate privileges and execute arbitrary code in the context of NT AUTHORITY\SYSTEM by replacing DataSpotliteAgent.exe or any other binaries called by the Cyrisma_Agent service when it starts

Related CVEs

Key Information

GHSA ID
GHSA-pcp7-7qh2-6c2r
Published
September 16, 2025 6:31 PM
Last Modified
September 17, 2025 6:31 PM
CVSS Score
7.5 /10
Primary Ecosystem
Unknown
Primary Package
Unknown
GitHub Reviewed
✗ No

Dataset

Last updated: September 19, 2025 6:29 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.