216.73.216.133

CVE-2020-11847

· Published 21/08/2024 14:15 · Modified 23/08/2024 17:04

Labels: CVE-2020-11847 2024-08-21CVE-2020-11847CWE-78[email protected]

Essential information

Published
21/08/2024 14:15
Modified
23/08/2024 17:04
Author
Creator
CVSS
7.8 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

SSH authenticated user when access the PAM server can execute an OS command to gain the full system access using bash. This issue affects Privileged Access Manager before 3.7.0.1.

NVD status

Status
Analyzed — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
microfocus / netiq privileged access manager cpe:2.3:a:microfocus:netiq_privileged_access_manager:*:*:*:*:*:*:*:*
microfocus / netiq privileged access manager cpe:2.3:a:microfocus:netiq_privileged_access_manager:3.7:-:*:*:*:*:*:*

References