2 matches found
CVE-2024-5812
CVE-2024-5812 affects BeyondInsight PasswordSafe (BIPS) where an attacker with high privileges or a compromised high-privilege account can overwrite Read-Only smart rules via a specially crafted API request. Root cause is described as a bypass of smart rule protection enabling modification by aut...
CVE-2024-5813
CVE-2024-5813 affects BeyondInsight Password Safe (BIPS). An authenticated attacker with high privileges can exploit an information leak in the server response to access SSH private keys, exposing highly sensitive material. The vulnerability targets the confidentiality of SSH keys via a disclosur...