Lucene search
13061848-ea10-403d-bd75-c83a022c2891NVD:CVE-2024-5812HistoryJun 11, 2024 - 4:15 p.m.
CVE-2024-5812
2024-06-1116:15:29
CWE-290
13061848-ea10-403d-bd75-c83a022c2891
web.nvd.nist.gov
6
bips
vulnerability
high privilege
bips api
smart rules
security
CVSS3
3.3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:N
EPSS
0
Percentile
9.0%
A low severity vulnerability in BIPS has been identified where an attacker with high privileges or a compromised high privilege account can overwrite Read-Only smart rules via a specially crafted API request.
Related
vulnrichment
vulnrichment
CVE-2024-5812 Smart Rule Overwrite Bypass in BeyondInsight PasswordSafe
2024-06-11 15:41:13
cve
cve
CVE-2024-5812
2024-06-11 16:15:29
cvelist
cvelist
CVE-2024-5812 Smart Rule Overwrite Bypass in BeyondInsight PasswordSafe
2024-06-11 15:41:13
CVSS3
3.3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:N
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2024-5812