3 results (0.007 seconds)

CVSS: 9.0EPSS: 0%CPEs: 25EXPL: 0

CVE-2021-3187

https://notcve.org/view.php?id=CVE-2021-3187

11 Dec 2023 — An issue was discovered in BeyondTrust Privilege Management for Mac before 5.7. An authenticated, unprivileged user can elevate privileges by running a malicious script (that executes as root from a temporary directory) during install time. (This applies to macOS before 10.15.5, or Security Update 2020-003 on Mojave and High Sierra, Later versions of macOS are not vulnerable.) Se descubrió un problema en BeyondTrust Privilege Management para Mac anterior a la versión 5.7. Un usuario autenticado y sin privil... • https://www.beyondtrust.com/docs/release-notes/privilege-management/index.htm •

CVSS: 7.8EPSS: 92%CPEs: 39EXPL: 95

CVE-2021-3156 – Sudo Heap-Based Buffer Overflow Vulnerability

https://notcve.org/view.php?id=CVE-2021-3156

26 Jan 2021 — Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character. Sudo versiones anteriores a 1.9.5p2 contiene un error de desbordamiento que puede resultar en un desbordamiento de búfer basado en la pila, lo que permite la escalada de privilegios a root a través de "sudoedit -s" y un argumento de línea de comandos que termina con un solo caráct... • https://packetstorm.news/files/id/176932 • CWE-122: Heap-based Buffer Overflow CWE-193: Off-by-one Error •

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0

CVE-2020-9326

https://notcve.org/view.php?id=CVE-2020-9326

18 Mar 2020 — BeyondTrust Privilege Management for Windows and Mac (aka PMWM; formerly Avecto Defendpoint) 5.1 through 5.5 before 5.5 SR1 mishandles command-line arguments with PowerShell .ps1 file extensions present, leading to a DefendpointService.exe crash. BeyondTrust Privilege Management para Windows y Mac (también se conoce como PMWM; anteriormente Avecto Defendpoint) versiones 5.1 hasta 5.5 anteriores a 5.5 SR1, maneja inapropiadamente los argumentos de la línea de comando con las extensiones de archivo .ps1 de Po... • https://www.beyondtrust.com/support/changelog/privilege-management-for-windows-5-5-sr1 •