PT-2023-27224 · One Identity · One Identity Password Manager
Roi Hay
·
Published
2023-09-27
·
Updated
2023-09-29
·
CVE-2023-4003
CVSS v3.1
7.6
High
| Vector | AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
One Identity Password Manager version 5.9.7.1
Description
An unauthenticated attacker with physical access to a workstation may upgrade privileges to SYSTEM through an unspecified method. This issue is related to execution with unnecessary privileges.
Recommendations
For One Identity Password Manager version 5.9.7.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
One Identity Password Manager