Vulnerability in Delinea Centrify PAS v. 21.3 and possibly others. The application is prone to the path traversal vulnerability allowing arbitrary files reading outside the web publish directory. Versions 23.1-HF7 and on have the patch.
Metrics
Affected Vendors & Products
References
History
Thu, 29 Aug 2024 20:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Delinea
Delinea privileged Access Service |
|
Weaknesses | CWE-22 | |
CPEs | cpe:2.3:a:delinea:privileged_access_service:*:*:*:*:*:*:*:* | |
Vendors & Products |
Delinea
Delinea privileged Access Service |
MITRE
Status: PUBLISHED
Assigner: Kaspersky
Published: 2024-07-02T15:55:23.267Z
Updated: 2024-08-01T21:25:03.196Z
Reserved: 2024-06-11T15:11:40.192Z
Link: CVE-2024-5865
Vulnrichment
Updated: 2024-08-01T21:25:03.196Z
NVD
Status : Analyzed
Published: 2024-07-02T16:15:05.667
Modified: 2024-08-29T20:26:04.750
Link: CVE-2024-5865
Redhat
No data.