Vulnerability Details CVE-2024-1591
Prior to version 24.1, a local authenticated attacker can view Sysvol when Privilege Management for Windows is configured to use a GPO policy. This allows them to view the policy and potentially find configuration issues.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 19.2%
CVSS Severity
CVSS v3 Score 3.3
References
Products affected by CVE-2024-1591
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:-
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:22.3
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:23.1
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:23.1.264
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:23.1.269
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:23.3
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:23.3.148
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:23.5
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:23.6
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:23.6.89
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:23.7
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:23.7.150
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:23.9
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:23.9.261
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:4.3
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:4.4
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.0
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.1
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.2.21
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.2.28
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.3.216
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.3.219
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.3.229
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.3.230
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.4
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.5
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.5.144
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.6
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.7