2 matches found
CVE-2024-5865
CVE-2024-5865 affects Delinea Centrify PAS. The issue is a path traversal vulnerability that allows reading arbitrary files outside the web publish directory in Centrify PAS versions before 23.1-HF7; patchs are available in 23.1-HF7 and later. Impact centers on confidentiality (HIGH) with no indi...
CVE-2024-5866
CVE-2024-5866 (Delinea Centrify PAS): A path traversal flaw in Centrify PAS versions prior to 23.1-HF7 can list arbitrary directories outside the web app root. The issue is mitigated by upgrading to 23.1-HF7 or later (patch available). Other details: affected product/component is Centrify PAS; ro...