CVE-2022-35412

Digital Guardian Agent 7.7.4.0042 allows an administrator (who ordinarily does not have a supported way to uninstall the product) to disable some of the agent functionality and then exfiltrate files to an external USB device.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.1 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 35%
VendorProductVersion
digitalguardiandigital_guardian
7.7.4.0042
𝑥
= Vulnerable software versions
References
https://github.com/i014n/DigitalGuardian-DLP-Agent-vulnerability
https://www.tenforums.com/tutorials/46259-block-unblock-legacy-file-system-filter-drivers-windows-10-a.html
https://github.com/i014n/DigitalGuardian-DLP-Agent-vulnerability
https://www.tenforums.com/tutorials/46259-block-unblock-legacy-file-system-filter-drivers-windows-10-a.html