Vulnerabilities > CVE-2021-42254 - Exposure of Resource to Wrong Sphere vulnerability in Beyondtrust Privilege Management for Windows

047910
CVSS 7.2 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
local
low complexity
beyondtrust
CWE-668
NVD
Published: 2021-11-19
Updated: 2021-11-24

Summary

BeyondTrust Privilege Management prior to version 21.6 creates a Temporary File in a Directory with Insecure Permissions.

Vulnerable Configurations

Part Description Count
Application
Beyondtrust
1

Common Weakness Enumeration (CWE)

References