Executive Summary

A vulnerability was discovered in CoSoSys Unify which could allow an attacker with administrator access to the Unify Management Console to remotely execute arbitrary code on the server with root privileges.

Netwrix is unaware of any evidence of active exploitation of this vulnerability.

Vulnerability

Exploitability

Factors such as whether details about the vulnerability are publicly known, whether an exploit is readily available, or whether adversaries are actively exploiting the vulnerability are valuable in making risk-based judgements about urgency and priority; customers should use the information below in making those decisions.

Solution

CoSoSys Unify customers are advised to take the following actions:

1. Download the relevant security hotfix for your Unify installation:

   Product	Applicable Version	Downloads
   CoSoSys Unify	7.0.6.2	Download offline patch
   CoSoSys Unify	7.1.2	Download offline patch

2. Apply the security hotfix via the Offline Patch feature.

Official Fixes

Updated software has been released containing official fixes as indicated in the table below.

FAQ

1. How do I determine the version of CoSoSys Endpoint Protector and whether the patch is applied?

   Please refer to this knowledge base article.

Revisions

Updates to this advisory may be made as necessary. Information about each change will be published in the table below.

Disclaimer

The information and materials included in or linked to this Security Advisory are provided on an “as-is” basis and without warranty of any kind, and we disclaim all representations and warranties of any kind, whether express or implied, including warranties of merchantability and fitness for a particular use. You acknowledge and agree that your use of the information and materials included in or linked to this Security Advisory are at your own risk.