Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SSH Private Key Leak in BeyondInsight PasswordSafe
Vulnerability Description
A medium severity vulnerability in BIPS has been identified where an authenticated attacker with high privileges can access the SSH private keys via an information leak in the server response.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
信息暴露
Vulnerability Title
BeyondInsight 信息泄露漏洞
Vulnerability Description
BeyondInsight是美国BeyondTrust的一个特权访问管理 (PAM) 报告平台。 BeyondInsight Password Safe存在信息泄露漏洞,该漏洞源于具有高权限的经过身份验证的攻击者可以通过服务器响应中的信息泄露访问SSH私钥。
CVSS Information
N/A
Vulnerability Type
N/A