CVE-2024-5813

Published: Jun 11, 2024Modified: Feb 11, 2025

4.9

Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Exploitability: 1.2 / Impact: 3.6

Source: NVD

Description

A medium severity vulnerability in BIPS has been identified where an authenticated attacker with high privileges can access the SSH private keys via an information leak in the server response.

Affected (1)

Products: Beyondtrust: Beyondinsight Password Safe

Beyondtrust

1 product

Beyondinsight Password Safe

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Beyondtrust Beyondinsight Password Safe	From 23.3 to 23.3.0.929

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (2)

https://www.beyondtrust.com/trust-center/security-advisories/bt24-08

Source: 13061848-ea10-403d-bd75-c83a022c2891

Vendor Advisory

https://www.beyondtrust.com/trust-center/security-advisories/bt24-08

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.