An issue was discovered in the Agent in Delinea Privilege Manager (formerly Thycotic Privilege Manager) before 12.0.1096 on Windows. Sometimes, a non-administrator user can copy a crafted DLL file to a temporary directory (used by .NET Shadow Copies) such that privilege escalation can occur if the core agent service loads that file.
Metrics
Affected Vendors & Products
References
History
Thu, 31 Oct 2024 14:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-427 | |
Metrics |
ssvc
|
Thu, 15 Aug 2024 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-06-27T00:00:00
Updated: 2024-10-31T13:26:17.983Z
Reserved: 2024-06-27T00:00:00
Link: CVE-2024-39708
Vulnrichment
Updated: 2024-08-02T04:26:15.983Z
NVD
Status : Awaiting Analysis
Published: 2024-06-28T01:15:08.793
Modified: 2024-11-21T09:28:15.843
Link: CVE-2024-39708
Redhat
No data.