VYPR

osquery

by Facebook

CVEs (1)

  • CVE-2019-3567HigJun 3, 2019
    risk 0.53cvss 8.1epss 0.02

    In some configurations an attacker can inject a new executable path into the extensions.load file for osquery and hard link a parent folder of a malicious binary to a folder with known 'safe' permissions. Under those circumstances osquery will load said malicious executable with…