Improper Privilege Management in upKeeper Solutions upKeeper Instant Privilege Access
CVE-2024-9478

10CRITICAL

Key Information:

Vendor: Upkeeper Solutions
Status: Upkeeper Instant Privilege Access
Vendor: CVE Published:; 20 November 2024

🔔 Create Upkeeper Solutions Vulnerability Alert

What is CVE-2024-9478?

The Improper Privilege Management vulnerability identified in upKeeper Solutions’ upKeeper Instant Privilege Access allows unauthorized users to escalate privileges. This potentially enables them to gain elevated access rights within the system, thus posing a significant security risk. It is crucial for users of versions before 1.2 of this product to apply recommended security measures to mitigate potential exploitation.

Affected Version(s)

upKeeper Instant Privilege Access 0 < 1.2

References

https://support.upkeeper.se/hc/en-us/articles/17007638130...

CVSS V4

Score:

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 20, 2024

CVE-2024-9478 Data

JSON