Vulnerabilities > CVE-2022-48685 - Unspecified vulnerability in Logpoint Siem

CVSS 6.7 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

logpoint

NVD

Published: 2024-04-27

Updated: 2025-04-18

Summary

An issue was discovered in Logpoint 7.1 before 7.1.2. The daily executed cron file clean_secbi_old_logs is writable by all users and is executed as root, leading to privilege escalation.

Vulnerable Configurations

Part	Description	Count
Application	Logpoint Logpoint Siem *	1

References

https://servicedesk.logpoint.com/hc/en-us/articles/7997112373277-Privilege-Escalation-Through-Cronjob
https://servicedesk.logpoint.com/hc/en-us/articles/7997112373277-Privilege-Escalation-Through-Cronjob