CriticalCVECISA — Known Exploited Vulnerabilities· 11 Jul 2023

CVE-2022-31199 — Netwrix Auditor Insecure Object Deserialization Vulnerability

Severity: Critical · Kind: Vulnerability

Plain-English summary on the way

We've ingested this item but haven't summarised it yet. Read the upstream advisory using the link below in the meantime — the AI summary will appear here once the next run completes.

From the source

Netwrix Auditor. Netwrix Auditor User Activity Video Recording component contains an insecure objection deserialization vulnerability that allows an unauthenticated, remote attacker to execute code as the NT AUTHORITY\SYSTEM user. Successful exploitation requires that the attacker is able to reach port 9004/TCP, which is commonly blocked by standard enterprise firewalling. Required action: Apply updates per vendor instructions or discontinue use of the product if updates are unavailable.

Vulnerability facts

CVE: CVE-2022-31199
On CISA KEV since: 2023-07-11
Ransomware use: Known

Read the original advisory →← All threat intel

Was this useful?

00000Sign in to react

Plain-English summaries are AI-generated and reviewed for tone, not technical accuracy. For incident response, always rely on the original source linked above.