Vulnerabilities > RSA > Netwitness
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-28 | CVE-2022-47529 | Unspecified vulnerability in RSA Netwitness 11.2.1.1 Insecure Win32 memory objects in Endpoint Windows Agents in RSA NetWitness Platform before 12.2 allow local and admin Windows user accounts to modify the endpoint agent service configuration: to either disable it completely or run user-supplied code or commands, thereby bypassing tamper-protection features via ACL modification. | 6.7 |
| 2019-05-15 | CVE-2019-3725 | OS Command Injection vulnerability in RSA Netwitness and Security Analytics RSA Netwitness Platform versions prior to 11.2.1.1 and RSA Security Analytics versions prior to 10.6.6.1 are vulnerable to a Command Injection vulnerability due to missing input validation in the product. | 7.5 |