Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-12613

An issue was discovered in BeyondTrust Privilege Management for Windows through 5.6. An attacker can spawn a process with multiple users as part of the security token (prior to Avecto elevation). When Avecto elevates the process, it removes the user who is launching the process, but not the second user. Therefore this second user still retains access and can give permission to the process back to the first user.

Published

2023-12-11T22:15:06.580

Last Modified

2024-11-21T04:59:55.223

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 8.8 (HIGH)

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	beyondtrust	privilege_management_for_windows	≤ 5.6	Yes

References

https://www.beyondtrust.com/support/changelog/privilege-management-for-windows-5-6-sr1 Release Notes ([email protected])
https://www.beyondtrust.com/trust-center/security-advisories/bt22-11 Vendor Advisory ([email protected])
https://www.beyondtrust.com/support/changelog/privilege-management-for-windows-5-6-sr1 Release Notes (af854a3a-2127-422b-91ae-364da2661108)
https://www.beyondtrust.com/trust-center/security-advisories/bt22-11 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)