Improper Privilege Management Vulnerability Allows Privilege Escalation
CVE-2024-4018

7.8HIGH

Key Information:

Vendor

BeyondTrust

Status
U-series Appliance
Vendor
CVE Published:
19 April 2024

What is CVE-2024-4018?

An improper privilege management vulnerability in the BeyondTrust U-Series Appliance running on Windows systems could enable an attacker to escalate privileges. This flaw exists within the local appliance API modules and impacts versions of the U-Series Appliance up to 3.4. Users are advised to upgrade to version 4.0.3 or later to mitigate this risk.

References

https://www.beyondtrust.com/docs/release-notes/u-series-a...

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

JSON
.
CVE-2024-4018 : Improper Privilege Management Vulnerability Allows Privilege Escalation