Privilege Escalation Vulnerability in BeyondTrust Privilege Management for Windows
CVE-2020-12612
Currently unrated
What is CVE-2020-12612?
A vulnerability in BeyondTrust Privilege Management for Windows allows standard users on 32-bit machines to manipulate environment variables. By creating a user-level environment variable that points to a directory they control, malicious users can craft a folder structure that triggers rules for executing arbitrary code with elevated privileges. This could lead to unauthorized access and control over systems, making it vital for organizations to implement patches provided by BeyondTrust for affected versions.