Vulnerability Description
A medium severity vulnerability in BIPS has been identified where an authenticated attacker with high privileges can access the SSH private keys via an information leak in the server response.
CVSS Score
5.9
MEDIUM
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Beyondtrust | Beyondinsight Password Safe | >= 23.3, < 23.3.0.929 |
Related Weaknesses (CWE)
References
- https://www.beyondtrust.com/trust-center/security-advisories/bt24-08Vendor Advisory
- https://www.beyondtrust.com/trust-center/security-advisories/bt24-08Vendor Advisory
FAQ
What is CVE-2024-5813?
CVE-2024-5813 is a vulnerability with a CVSS score of 5.9 (MEDIUM). A medium severity vulnerability in BIPS has been identified where an authenticated attacker with high privileges can access the SSH private keys via an information leak in the server response.
How severe is CVE-2024-5813?
CVE-2024-5813 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-5813?
Check the references section above for vendor advisories and patch information. Affected products include: Beyondtrust Beyondinsight Password Safe.