Every CVE whose affected-product data names Qualys Cloud Agent, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2023-28140 — CVSS 6.7 (medium): An Executable Hijacking condition exists in the Qualys Cloud Agent for Windows platform in versions before 4.5.3.1. Attackers may load a…
CVE-2023-28141 — CVSS 6.7 (medium): An NTFS Junction condition exists in the Qualys Cloud Agent for Windows platform in versions before 4.8.0.31. Attackers may write files to…
CVE-2023-28142 — CVSS 6.7 (medium): A Race Condition exists in the Qualys Cloud Agent for Windows platform in versions from 3.1.3.34 and before 4.5.3.1. This allows attackers…
CVE-2023-28143 — CVSS 6.7 (medium): Qualys Cloud Agent for macOS (versions 2.5.1-75 before 3.7) installer allows a local escalation of privilege bounded only to the time of…
CVE-2022-29550 — CVSS 5.5 (medium): An issue was discovered in Qualys Cloud Agent 4.8.0-49. It writes "ps auxwwe" output to the /var/log/qualys/qualys-cloud-agent-scan.log…