CVE-2024-8885: 
Sophos Endpoint Anti-virus vulnerability analysis and mitigation

A local privilege escalation vulnerability (CVE-2024-8885) affects Sophos Intercept X for Windows with Central Device Encryption 2024.2.0 and older versions. The vulnerability allows writing of arbitrary files, posing a significant security risk. The issue was disclosed on October 2, 2024, and has been assigned a CVSS v3.1 base score of 8.8 (HIGH) (NVD).

The vulnerability has been classified under CWE-502 (Deserialization of Untrusted Data) and CWE-1104 (Use of Unmaintained Third Party Components). The CVSS vector string is CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H, indicating local access requirements, low attack complexity, low privileges required, no user interaction needed, and high impacts on confidentiality, integrity, and availability (NVD).

The vulnerability has high severity ratings across confidentiality, integrity, and availability. As a local privilege escalation vulnerability that allows arbitrary file writing, it could potentially enable attackers to escalate their privileges and compromise the affected system (NVD).

Users should upgrade from Sophos Intercept X for Windows with Central Device Encryption 2024.2.0 and older versions to the latest available version that contains the fix for this vulnerability (Sophos Advisory).