BeyondTrust - Secure Remote Access and Privileged Access Management
Announcement:
Be among the first to secure AI coworkers before they act. Request early access to AI Agent Security.

Advisory ID: BT24-09

  • CVSSv3 Score: 6.4

  • Severity: Medium

  • Issue Date: 2024-10-22

  • CVE(s): 2024-9110

Summary

A medium severity vulnerability has been identified within Privileged Identity which can allow an attacker to perform reflected cross-site scripting attacks.

Affected Versions

Product

Version

Privileged Identity

Prior to 7.4.2

Fixed Versions

Product

Version

Privileged Identity

7.4.2 and later

Acknowledgements

BeyondTrust would like to acknowledge Tae Denwongkul for reporting this issue.

References:

  1. https://www.cve.org/cverecord?id=CVE-2024-9110