CVE-2024-9110

Description

A medium severity vulnerability has been identified within Privileged Identity which can allow an attacker to perform reflected cross-site scripting attacks.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

Low

Availability

Low

Affected products

BeyondTrust / Privileged Identity0 – 7.4.2

References

VENDOR_ADVISORYhttps://www.beyondtrust.com/trust-center/security-advisories/bt24-09