Vulnerability Details CVE-2024-25083
An issue was discovered in BeyondTrust Privilege Management for Windows before 24.1. When an low-privileged user initiates a repair, there is an attack vector through which the user is able to execute any program with elevated privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 10.2%
CVSS Severity
CVSS v3 Score 6.3
References
Products affected by CVE-2024-25083
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:-
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:22.3
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:4.3
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:4.4
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.0
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.1
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.2.21
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.2.28
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.3.216
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.3.219
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.3.229
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.3.230
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.4
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.5
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.5.144
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.6
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.7