CVE-2019-12042 — CRITICAL (9.8)

Q: How severe is CVE-2019-12042?

CVE-2019-12042 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Q: Is there a patch for CVE-2019-12042?

Check the references section above for vendor advisories and patch information. Affected products include: Pandasecurity Panda Antivirus, Pandasecurity Panda Antivirus Pro, Pandasecurity Panda Dome, Pandasecurity Panda Global Protection, Pandasecurity Panda Gold Protection.

Vulnerability Description

Insecure permissions of the section object Global\PandaDevicesAgentSharedMemory and the event Global\PandaDevicesAgentSharedMemoryChange in Panda products before 18.07.03 allow attackers to queue an event (as an encrypted JSON string) to the system service AgentSvc.exe, which leads to privilege escalation when the CmdLineExecute event is queued. This affects Panda Antivirus, Panda Antivirus Pro, Panda Dome, Panda Global Protection, Panda Gold Protection, and Panda Internet Security.

CVSS Score

9.8

CRITICAL

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Pandasecurity	Panda Antivirus	< 18.07.03
Pandasecurity	Panda Antivirus Pro	< 18.07.03
Pandasecurity	Panda Dome	< 18.07.03
Pandasecurity	Panda Global Protection	< 18.07.03
Pandasecurity	Panda Gold Protection	< 18.07.03
Pandasecurity	Panda Internet Security	< 18.07.03

Related Weaknesses (CWE)

CWE-732

References

https://github.com/SouhailHammou/Panda-Antivirus-LPEExploitThird Party Advisory
https://rce4fun.blogspot.com/2019/05/panda-antivirus-local-privilege.htmlExploitThird Party Advisory
https://www.pandasecurity.com/usa/support/card?id=100063Vendor Advisory
https://github.com/SouhailHammou/Panda-Antivirus-LPEExploitThird Party Advisory
https://rce4fun.blogspot.com/2019/05/panda-antivirus-local-privilege.htmlExploitThird Party Advisory
https://www.pandasecurity.com/usa/support/card?id=100063Vendor Advisory

FAQ

What is CVE-2019-12042?

CVE-2019-12042 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Insecure permissions of the section object Global\PandaDevicesAgentSharedMemory and the event Global\PandaDevicesAgentSharedMemoryChange in Panda products before 18.07.03 allow attackers to queue an e...

How severe is CVE-2019-12042?

CVE-2019-12042 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2019-12042?

Check the references section above for vendor advisories and patch information. Affected products include: Pandasecurity Panda Antivirus, Pandasecurity Panda Antivirus Pro, Pandasecurity Panda Dome, Pandasecurity Panda Global Protection, Pandasecurity Panda Gold Protection.