Qualys Cloud Agent Privilege Escalation Vulnerability via Uninstall Script

Vulnerability

A vulnerability in the Qualys Cloud Agent for MacOS and Linux has been identified, involving a bundled uninstall script that executes multiple system commands without using absolute paths or sanitizing the $PATH environment. This flaw allows an attacker with root or sudo privileges to manipulate the execution of commands, potentially leading to local privilege escalation and arbitrary command execution with elevated rights.

Impact

Exploitation of this vulnerability could result in unauthorized local privilege escalation, allowing a user to gain elevated rights and execute commands as a superuser.

Added: Nov 10, 2025, 6:18 PM

Updated: Nov 10, 2025, 6:18 PM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

10.0

exploitability

2.4

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

10.0

exploitability

2.4

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Qualys Cloud Agent Privilege Escalation Vulnerability via Uninstall Script

Vulnerability

Impact

Affected Products

Qualys Cloud Agent

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating