Fix for Archive Logs Vulnerability in Agent Tray Icon

This document highlights the security update for a vulnerability identified in the archive logs feature of the agent tray icon within Endpoint Central agent. 

Release Notes

  • CVE-ID: CVE-2024-10203
  • Severity: High
  • Update Release Date: 23-09-2024 
  • Reported by: Brenden Meeder via Zoho Corp Bug bounty program.

What was the problem?

The archive logs feature in the agent tray could be exploited to inadvertently delete files from directories to which the user did not have proper access. This vulnerability could lead to arbitrary file deletion and privilege escalation. Exploiting this issue required physical access to the device. We have addressed the vulnerability, preventing both arbitrary file deletion and privilege escalation.

Fix build:

  • For Enterprise - 11.3.2435.1 
  • 11.3.2416.21 and below, upgrade to 11.3.2416.22
  • 11.3.2428.9 and below, upgrade to 11.3.2428.10

How to fix it?

To apply this fix, follow these steps below:

  1. Login to the product console.
  2. Click on your current build number (top right corner).
  3. Download and install the latest applicable update (PPM).

Note: This vulnerability is applicable for both On-Premises and Cloud versions.

Contact Support

If you have any questions or require further assistance, please don't hesitate to contact our support team.