The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical security flaw affecting BeyondTrust products to its Known Exploited Vulnerabilities catalog, citing active exploitation.
The vulnerability, tracked as CVE-2024-12356 with a CVSS score of 9.8, is a command injection flaw that enables attackers to run commands as site users.
BeyondTrust's investigation revealed that attackers accessed a Remote Support SaaS API key, letting them reset passwords for local application accounts, highlighting the risks of existing vulnerabilities.
CISA recommends that users of self-hosted BeyondTrust products update their systems to the latest versions to mitigate the risks posed by the identified vulnerabilities.
Collection
[
|
...
]