Medium Severity Vulnerability in BIPS Allows Access to SSH Private Keys via Information Leak
CVE-2024-5813

4.9MEDIUM

Key Information:

Vendor: Beyondtrust
Status: Beyondinsight Passwordsafe
Vendor: CVE Published:; 11 June 2024

🔔 Create Beyondtrust Vulnerability Alert

What is CVE-2024-5813?

A medium severity vulnerability in BIPS has been identified where an authenticated attacker with high privileges can access the SSH private keys via an information leak in the server response.

Affected Version(s)

BeyondInsight PasswordSafe 23.3 < 23.3.0.929

References

https://www.beyondtrust.com/trust-center/security-advisor...

CVSS V3.1

Score:

4.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 11, 2024
Vulnerability Reserved
Jun 10, 2024