THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Zendesk (Helpdesk and Chat)

Ok

PUBLISHED

CVE-2024-5813

SSH Private Key Leak in BeyondInsight PasswordSafe

Reserved:2024-06-10
Published:2024-06-11
Updated:2024-06-11

Description

A medium severity vulnerability in BIPS has been identified where an authenticated attacker with high privileges can access the SSH private keys via an information leak in the server response.



MEDIUM: 5.9CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N

Problem types

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

Product status

Default status
unaffected

23.3 before 23.3.0.929
affected

References

https://www.beyondtrust.com/trust-center/security-advisories/bt24-08

cve.org CVE-2024-5813

nvd.nist.gov CVE-2024-5813

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-5813