One Identity · One Identity Password Manager · CVE-2023-4003
**Name of the Vulnerable Software and Affected Versions**
One Identity Password Manager version 5.9.7.1
**Description**
An unauthenticated attacker with physical access to a workstation may upgrade privileges to SYSTEM through an unspecified method. This issue is related to execution with unnecessary privileges.
**Recommendations**
For One Identity Password Manager version 5.9.7.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.