Lucene search
K

261 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:49 p.m.8 views

CVE-2020-12612

An issue was discovered in BeyondTrust Privilege Management for Windows through 5.6. When specifying a program to elevate, it can typically be found within the Program Files x86 folder and therefore uses the %ProgramFilesx86% environment variable. However, when this same policy gets pushed to a...

7.8CVSS7.5AI score0.00256EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 5:34 p.m.9 views

CVE-2020-9326

BeyondTrust Privilege Management for Windows and Mac aka PMWM; formerly Avecto Defendpoint 5.1 through 5.5 before 5.5 SR1 mishandles command-line arguments with PowerShell .ps1 file extensions present, leading to a DefendpointService.exe crash...

7.5CVSS7AI score0.01044EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:48 p.m.11 views

CVE-2020-28369

In BeyondTrust Privilege Management for Windows aka PMfW through 5.7, a SYSTEM installation causes Cryptbase.dll to be loaded from the user-writable location %WINDIR%\Temp...

7.8CVSS6.9AI score0.00233EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/07 5:28 p.m.4 views

CVE-2025-0217

BeyondTrust Privileged Remote Access PRA versions prior to 25.1 are vulnerable to a local authentication bypass. A local authenticated attacker can view the connection details of a ShellJump session that was initiated with external tools, allowing unauthorized access to connected sessions...

7.8CVSS6.4AI score0.00173EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2025/05/07 12:0 a.m.178 views

📄 BeyondTrust Privileged Remote Access 24.3 Takeover

BeyondTrust Privileged Remote Access PRA version 24.3 suffers a privileged login takeover vulnerability due to a passwordless ssh tunnel. === Details ======================================================== Vendor: BeyondTrust Product: Privileged Remote Access PRA Subject: PRA connection takeover...

7.8CVSS7.5AI score0.00193EPSS
Exploits1
OSV
OSV
added 2025/05/05 5:18 p.m.3 views

CVE-2025-0217

BeyondTrust Privileged Remote Access PRA versions prior to 25.1 are vulnerable to a local authentication bypass. A local authenticated attacker can view the connection details of a ShellJump session that was initiated with external tools, allowing unauthorized access to connected sessions...

7.8CVSS5.8AI score0.00173EPSS
Exploits1References2
NVD
NVD
added 2025/05/05 5:18 p.m.14 views

CVE-2025-0217

BeyondTrust Privileged Remote Access PRA versions prior to 25.1 are vulnerable to a local authentication bypass. A local authenticated attacker can view the connection details of a ShellJump session that was initiated with external tools, allowing unauthorized access to connected sessions...

7.8CVSS0.00173EPSS
Exploits1References2
CVE
CVE
added 2025/05/05 5:0 p.m.57 views

CVE-2025-0217

BeyondTrust Privileged Remote Access (PRA) prior to version 25.1 is affected by a local authentication bypass. An authenticated local attacker can view the ShellJump session details initiated with external tools, enabling unauthorized access to connected sessions. Affected product: BeyondTrust PR...

7.8CVSS6.6AI score0.00173EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2025/05/05 5:0 p.m.12 views

CVE-2025-0217 Privileged Remote Access Authentication Bypass

BeyondTrust Privileged Remote Access PRA versions prior to 25.1 are vulnerable to a local authentication bypass. A local authenticated attacker can view the connection details of a ShellJump session that was initiated with external tools, allowing unauthorized access to connected sessions...

7.3CVSS0.00173EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/05/05 12:0 a.m.3 views

BeyondTrust Privileged Remote Access 安全漏洞

BeyondTrust Privileged Remote Access BeyondTrust PRA is a privileged remote access software from BeyondTrust USA. A security vulnerability exists in BeyondTrust Privileged Remote Access versions prior to 25.1 that stems from a local authentication bypass that could lead to unauthorized session...

7.8CVSS6.5AI score0.00173EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/04/28 12:0 a.m.2 views

BeyondTrust Privilege Management For Windows Installed (Windows)

Binary data beyondtrustprivilegemanagementwininstalled.nbin...

7.3AI score
Exploits0References1
Packet Storm
Packet Storm
added 2025/02/28 12:0 a.m.406 views

BeyondTrust 24.3.1 Code Execution

BeyondTrust version 24.3.1 suffers from a code execution vulnerability. ============================================================================================================================================= | Title : BeyondTrust v24.3.1 PHP Code Injection Vulnerability | | Author : indoush...

7.9AI score
Exploits0
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.6 views

BeyondTrust Endpoint Privilege Management for Windows 安全漏洞

BeyondTrust Endpoint Privilege Management for Windows is a complete endpoint privilege management solution from BeyondTrust USA. A security vulnerability exists in BeyondTrust Endpoint Privilege Management for Windows prior to version 25.2 that originates from a local authentication attacker who...

7.8CVSS6.5AI score0.00196EPSS
Exploits0References2
Rapid7 Blog
Rapid7 Blog
added 2025/02/21 9:27 p.m.15 views

Metasploit Weekly Wrap-Up 02/21/2025

BeyondTrust exploit + fetch payload updates This Metasploit release includes an exploit module that chains two vulnerabilities, one exploited in the wild by APT groups and another one, a 0-day discovered by Rapid7 during the vulnerability analysis. This week's release also includes a significant...

9.8CVSS9AI score0.89472EPSS
Exploits19
0day.today
0day.today
added 2025/02/20 12:0 a.m.649 views

BeyondTrust Remote Code Execution Exploit

This exploit achieves unauthenticated remote code execution against BeyondTrust Privileged Remote Access PRA and Remote Support RS, with the privileges of the site user of the targeted BeyondTrust product site. This exploit targets PRA and RS versions 24.3.1 and below. This module requires...

9.8CVSS8.8AI score0.89472EPSS
Exploits14
NCSC
NCSC
added 2025/02/19 9:11 a.m.5 views

Vulnerability fixed in PostgreSQL

A vulnerability has been fixed in PostgreSQL. The vulnerability is located in the libpq functions of PostgreSQL and involves an SQL injection error. Improper processing of quotes and incorrectly formed UTF-8 sequences can lead to arbitrary code execution. This vulnerability is being actively...

9.2CVSS8.5AI score0.89472EPSS
Exploits10References1
Packet Storm
Packet Storm
added 2025/02/19 12:0 a.m.821 views

BeyondTrust Remote Code Execution

This exploit achieves unauthenticated remote code execution against BeyondTrust Privileged Remote Access PRA and Remote Support RS, with the privileges of the site user of the targeted BeyondTrust product site. This exploit targets PRA and RS versions 24.3.1 and below. This module requires...

9.8CVSS8.8AI score0.89472EPSS
Exploits14
Metasploit
Metasploit
added 2025/02/17 6:54 p.m.1560 views

BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) unauthenticated Remote Code Execution

This exploit achieves unauthenticated remote code execution against BeyondTrust Privileged Remote Access PRA and Remote Support RS, with the privileges of the site user of the targeted BeyondTrust product site. This exploit targets PRA and RS versions 24.3.1 and below. Module Options msf use...

9.8CVSS9.6AI score0.87991EPSS
Exploits8
The Hacker News
The Hacker News
added 2025/02/14 5:3 a.m.32 views

PostgreSQL Vulnerability Exploited Alongside BeyondTrust Zero-Day in Targeted Attacks

Threat actors who were behind the exploitation of a zero-day vulnerability in BeyondTrust Privileged Remote Access PRA and Remote Support RS products in December 2024 likely also exploited a previously unknown SQL injection flaw in PostgreSQL, according to findings from Rapid7. The vulnerability,...

9.8CVSS9.5AI score0.95151EPSS
Exploits16
The Hacker News
The Hacker News
added 2025/02/01 6:40 a.m.58 views

BeyondTrust Zero-Day Breach Exposed 17 SaaS Customers via Compromised API Key

BeyondTrust has revealed it completed an investigation into a recent cybersecurity incident that targeted some of the company's Remote Support SaaS instances by making use of a compromised API key. The company said the breach involved 17 Remote Support SaaS customers and that the API key was used...

9.8CVSS7.9AI score0.87991EPSS
Exploits8
Rows per page
Query Builder