CVE-2024-45488

{"id": "CVE-2024-45488", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2024-08-30T02:15:03.757", "references": [{"url": "https://support.oneidentity.com/kb/4376740/safeguard-for-privileged-passwords-security-vulnerability-notification-defect-460620", "source": "cve@mitre.org"}, {"url": "https://support.oneidentity.com/product-notification/noti-00001628", "source": "cve@mitre.org"}], "vulnStatus": "Awaiting Analysis", "descriptions": [{"lang": "en", "value": "One Identity Safeguard for Privileged Passwords before 7.5.2 allows unauthorized access because of an issue related to cookies. This only affects virtual appliance installations (VMware or HyperV). The fixed versions are 7.0.5.1 LTS, 7.4.2, and 7.5.2."}, {"lang": "es", "value": "Las versiones anteriores a la 7.5.2 de One Identity Safeguard for Privileged Passwords permiten el acceso no autorizado debido a un problema relacionado con las cookies. Esto solo afecta a las instalaciones de dispositivos virtuales (VMware o HyperV). Las versiones corregidas son 7.0.5.1 LTS, 7.4.2 y 7.5.2."}], "lastModified": "2024-08-30T19:35:06.870", "sourceIdentifier": "cve@mitre.org"}