Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in BeyondTrust Privilege Management for Windows through 5.6. An attacker can spawn a process with multiple users as part of the security token (prior to Avecto elevation). When Avecto elevates the process, it removes the user who is launching the process, but not the second user. Therefore this second user still retains access and can give permission to the process back to the first user.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
BeyondTrust Privilege Management 安全漏洞
Vulnerability Description
BeyondTrust Privilege Management是美国BeyondTrust公司的用于 Windows 和 Mac SaaS 的 BeyondTrust 权限管理工具。 BeyondTrust Privilege Management Windows 22.3之前版本存在安全漏洞,该漏洞源于攻击者可以生成具有多个用户的进程作为安全令牌的一部分。
CVSS Information
N/A
Vulnerability Type
N/A