Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Beyondtrust Security Vulnerabilities

cve
cve

CVE-2017-5996

The agent in Bomgar Remote Support 15.2.x before 15.2.3, 16.1.x before 16.1.5, and 16.2.x before 16.2.4 allows DLL hijacking because of weak %SYSTEMDRIVE%\ProgramData permissions.

7.8CVSS

7.6AI Score

0.001EPSS

2017-10-26 06:29 PM
36
cve
cve

CVE-2018-10959

Avecto Defendpoint 4 prior to 4.4 SR6 and 5 prior to 5.1 SR1 has an Untrusted Search Path vulnerability, exploitable by modifying environment variables to trigger automatic elevation of an attacker's process launch.

7.5CVSS

7.5AI Score

0.002EPSS

2019-04-17 03:29 PM
28
cve
cve

CVE-2020-12612

An issue was discovered in BeyondTrust Privilege Management for Windows through 5.6. When specifying a program to elevate, it can typically be found within the Program Files (x86) folder and therefore uses the %ProgramFiles(x86)% environment variable. However, when this same policy gets pushed to a...

7.8CVSS

7.7AI Score

0.0004EPSS

2023-12-12 02:15 PM
9
cve
cve

CVE-2020-12613

An issue was discovered in BeyondTrust Privilege Management for Windows through 5.6. An attacker can spawn a process with multiple users as part of the security token (prior to Avecto elevation). When Avecto elevates the process, it removes the user who is launching the process, but not the second ...

8.8CVSS

8.6AI Score

0.001EPSS

2023-12-11 10:15 PM
10
cve
cve

CVE-2020-12614

An issue was discovered in BeyondTrust Privilege Management for Windows through 5.6. If the publisher criteria is selected, it defines the name of a publisher that must be present in the certificate (and also requires that the certificate is valid). If an Add Admin token is protected by this criter...

7.8CVSS

7.5AI Score

0.0004EPSS

2023-12-12 03:15 PM
14
cve
cve

CVE-2020-12615

An issue was discovered in BeyondTrust Privilege Management for Windows through 5.6. When adding the Add Admin token to a process, and specifying that it runs at medium integrity with the user owning the process, this security token can be stolen and applied to arbitrary processes.

7.8CVSS

7.6AI Score

0.0004EPSS

2023-12-12 01:15 PM
9
cve
cve

CVE-2020-28369

In BeyondTrust Privilege Management for Windows (aka PMfW) through 5.7, a SYSTEM installation causes Cryptbase.dll to be loaded from the user-writable location %WINDIR%\Temp.

7.8CVSS

7.5AI Score

0.0004EPSS

2023-12-12 03:15 PM
9
cve
cve

CVE-2020-9326

BeyondTrust Privilege Management for Windows and Mac (aka PMWM; formerly Avecto Defendpoint) 5.1 through 5.5 before 5.5 SR1 mishandles command-line arguments with PowerShell .ps1 file extensions present, leading to a DefendpointService.exe crash.

7.5CVSS

7.5AI Score

0.001EPSS

2020-03-18 03:15 PM
38
cve
cve

CVE-2021-3156

Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character.

7.8CVSS

8.3AI Score

0.96EPSS

2021-01-26 09:15 PM
3992
In Wild
826
cve
cve

CVE-2021-31589

A cross-site scripting (XSS) vulnerability has been reported and confirmed for BeyondTrust Secure Remote Access Base Software version 6.0.1 and older, which allows the injection of unauthenticated, specially-crafted web requests without proper sanitization.

6.1CVSS

6.1AI Score

0.003EPSS

2022-01-05 12:15 PM
50
In Wild
cve
cve

CVE-2021-3187

An issue was discovered in BeyondTrust Privilege Management for Mac before 5.7. An authenticated, unprivileged user can elevate privileges by running a malicious script (that executes as root from a temporary directory) during install time. (This applies to macOS before 10.15.5, or Security Update ...

8.8CVSS

8.4AI Score

0.001EPSS

2023-12-11 11:15 PM
15
cve
cve

CVE-2021-42254

BeyondTrust Privilege Management prior to version 21.6 creates a Temporary File in a Directory with Insecure Permissions.

7.8CVSS

7.5AI Score

0.0004EPSS

2021-11-19 07:15 PM
20
cve
cve

CVE-2023-23632

BeyondTrust Privileged Remote Access (PRA) versions 22.2.x to 22.4.x are vulnerable to a local authentication bypass. Attackers can exploit a flawed secret verification process in the BYOT shell jump sessions, allowing unauthorized access to jump items by guessing only the first character of the se...

7.8CVSS

7.6AI Score

0.0004EPSS

2023-10-12 08:15 PM
26
cve
cve

CVE-2023-4310

BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) versions 23.2.1 and 23.2.2 contain a command injection vulnerability which can be exploited through a malicious HTTP request. Successful exploitation of this vulnerability can allow an unauthenticated remote attacker to execute unde...

9.8CVSS

9.5AI Score

0.002EPSS

2023-09-05 09:15 PM
22
cve
cve

CVE-2023-49944

The Challenge Response feature of BeyondTrust Privilege Management for Windows (PMfW) before 2023-07-14 allows local administrators to bypass this feature by decrypting the shared key, or by locating the decrypted shared key in process memory. The threat is mitigated by the Agent Protection feature...

6.7CVSS

6.4AI Score

0.0004EPSS

2023-12-25 08:15 AM
20
cve
cve

CVE-2024-4219

Prior to 23.2, it is possible to perform arbitrary Server-Side requests via HTTP-based connectors within BeyondInsight, resulting in a server-side request forgery vulnerability.

9.1CVSS

7.3AI Score

0.001EPSS

2024-06-04 09:15 PM
9
cve
cve

CVE-2024-4220

Prior to 23.1, an information disclosure vulnerability exists within BeyondInsight which can allow an attacker to enumerate usernames.

5.3CVSS

6.6AI Score

0.0005EPSS

2024-06-04 09:15 PM
9