Описание
A medium severity vulnerability in BIPS has been identified where an authenticated attacker with high privileges can access the SSH private keys via an information leak in the server response.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 23.3 (включая) до 23.3.0.929 (исключая)
cpe:2.3:a:beyondtrust:beyondinsight_password_safe:*:*:*:*:*:*:*:*
EPSS
Процентиль: 45%
0.00229
Низкий
5.9 Medium
CVSS3
4.9 Medium
CVSS3
Дефекты
CWE-200
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 5.9
github
больше 1 года назад
A medium severity vulnerability in BIPS has been identified where an authenticated attacker with high privileges can access the SSH private keys via an information leak in the server response.
EPSS
Процентиль: 45%
0.00229
Низкий
5.9 Medium
CVSS3
4.9 Medium
CVSS3
Дефекты
CWE-200
NVD-CWE-noinfo