CVE-2024-1764

Improper privilege management in Just-in-time (JIT) elevation module in Devolutions Server 2023.3.14.0 and earlier allows a user to continue using the elevated privilege even after the expiration under specific circumstances

CVSS

No CVSS.

References

Link	Resource
https://devolutions.net/security/advisories/DEVO-2024-0002

Configurations

No configuration.

History

06 Mar 2024, 15:18

Type	Values Removed	Values Added
Summary		(es) La gestión inadecuada de privilegios en el módulo de elevación Justo a tiempo (JIT) en Devolutions Server 2023.3.14.0 y versiones anteriores permite que un usuario continúe usando el privilegio elevado incluso después de su vencimiento en circunstancias específicas.

05 Mar 2024, 22:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-03-05 22:15

Updated : 2024-03-06 15:18

NVD link : CVE-2024-1764

Mitre link : CVE-2024-1764

CVE.ORG link : CVE-2024-1764

JSON object : View

Products Affected

No product.

CWE

CWE-269

Improper Privilege Management

JSON object

Attach tags to CVE-2024-1764

Attach tags to `CVE-2024-1764`