CVE-2024-39708

An issue was discovered in the Agent in Delinea Privilege Manager (formerly Thycotic Privilege Manager) before 12.0.1096 on Windows. Sometimes, a non-administrator user can copy a crafted DLL file to a temporary directory (used by .NET Shadow Copies) such that privilege escalation can occur if the core agent service loads that file.

CVSS v3 7.0 HIGH

7.0^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.0 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://docs.delinea.com/online-help/privilege-manager/release-notes/12.0.1-combined.htm
https://www.cyberark.com/resources/threat-research-blog/identity-crisis-the-curious-case-of-a-delinea-local-privilege-escalation-vulnerability
https://docs.delinea.com/online-help/privilege-manager/release-notes/12.0.1-combined.htm

Configurations

No configuration.

History

21 Nov 2024, 09:28

Type	Values Removed	Values Added
References	~~() https://docs.delinea.com/online-help/privilege-manager/release-notes/12.0.1-combined.htm -~~	() https://docs.delinea.com/online-help/privilege-manager/release-notes/12.0.1-combined.htm -

31 Oct 2024, 14:35

Type	Values Removed	Values Added
CWE		CWE-427

15 Aug 2024, 16:15

Type	Values Removed	Values Added
Summary		(es) Se descubrió un problema en el Agente en Delinea Privilege Manager (anteriormente Thycotic Privilege Manager) antes de la versión 12.0.1096 en Windows. A veces, un usuario que no es administrador puede copiar un archivo DLL manipulado en un directorio temporal (utilizado por las instantáneas de .NET), de modo que se puede producir una escalada de privilegios si el servicio del agente principal carga ese archivo.
References		() https://www.cyberark.com/resources/threat-research-blog/identity-crisis-the-curious-case-of-a-delinea-local-privilege-escalation-vulnerability -

28 Jun 2024, 10:27

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-06-28 01:15

Updated : 2024-11-21 09:28

NVD link : CVE-2024-39708

Mitre link : CVE-2024-39708

CVE.ORG link : CVE-2024-39708

JSON object : View

Products Affected

No product.

CWE

CWE-427

Uncontrolled Search Path Element

7.0 /10