Unrated severityNVD Advisory· Published Jan 24, 2023· Updated Apr 2, 2025

CVE-2022-38774

Description

An issue was discovered in the quarantine feature of Elastic Endpoint Security and Elastic Endgame for Windows, which could allow unprivileged users to elevate their privileges to those of the LocalSystem account.

Affected products

Elastic/Elastic Security Endpointcpe-rescue
Range: Elastic Security versions up to 7.17.6 and 8.3.3 and Elastic Endgame versions up to 3.62.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

discuss.elastic.co/t/endpoint-security-8-4-0-7-17-7-and-endgame-3-62-3-security-statement/323754mitre
www.elastic.co/community/securitymitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000