exploitDog

GHSA-q9x9-3w42-9w3c

Опубликовано: 06 мар. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 7.6

Описание

Improper privilege management in Just-in-time (JIT) elevation module in Devolutions Server 2023.3.14.0 and earlier allows a user to continue using the elevated privilege even after the expiration under specific circumstances

Improper privilege management in Just-in-time (JIT) elevation module in Devolutions Server 2023.3.14.0 and earlier allows a user to continue using the elevated privilege even after the expiration under specific circumstances

Ссылки

EPSS

Процентиль: 26%

0.00093

Низкий

7.6 High

CVSS3

CVE ID

Дефекты

CWE-269

Связанные уязвимости

CVE-2024-1764

CVSS3: 7.6

nvd

почти 2 года назад

Improper privilege management in Just-in-time (JIT) elevation module in Devolutions Server 2023.3.14.0 and earlier allows a user to continue using the elevated privilege even after the expiration under specific circumstances

EPSS

Процентиль: 26%

0.00093

Низкий

7.6 High

CVSS3

CVE ID

Дефекты

CWE-269