CVE-2024-9950 PoC — Abuse of Unauthenticated Compliance Recheck in SecureConnector

Source

Associated Vulnerability

Description

Forescout SecureConnector <= 11.3.07

Readme

# CVE-2024-9950-PoC
Forescout SecureConnector <= 11.3.07

## Detail
[My Blog](https://0nightsedge0.github.io/2025/01/12/CVE-2024-9950-Forescout-SecureConnector/)

## Info
* **Vulnerability:** Creation of Temporary Script in Directory with Insecure Permissions
* **Severity:** Medium to High
* **Vector:** Local Windows OS machine
* **Attack Complexity:** Low
* **Privileges Required:** Low
* **Categories:** Local Privilege Escalation

## Application 
#### **Affected Component:** Windows agent - SecureConnector from Forescout eyeSight and eyeControl
#### **Affected Version:** Forescout SecureConnector <= 11.3.07

File Snapshot

 [4.0K]  /data/pocs/bade300c33af3abdb36a95d61be81fca73e7f943
├── [  94]  chain_1.bat
├── [ 164]  chain_1.ps1
├── [6.3K]  CVE-2024-9950-PoC.ps1
└── [ 621]  README.md

0 directories, 4 files

Remarks