VYPR

Red Cloak Windows Agent

by SecureWorks

CVEs (1)

  • CVE-2019-19620LowDec 6, 2019
    risk 0.21cvss 3.3epss 0.00

    In SecureWorks Red Cloak Windows Agent before 2.0.7.9, a local user can bypass the generation of telemetry alerts by removing NT AUTHORITY\SYSTEM permissions from a file. This is limited in scope to the collection of process-execution telemetry, for executions against specific…