Skip to content
This repository has been archived by the owner on Jan 2, 2024. It is now read-only.

[FullDisclosure] SEC Consult SA-20231206 :: Kiosk Escape Privilege Escalation in One Identity Password Manager Secure Password Extension #7155

Open
hinoshiba opened this issue Dec 13, 2023 · 0 comments
Open

[FullDisclosure] SEC Consult SA-20231206 :: Kiosk Escape Privilege Escalation in One Identity Password Manager Secure Password Extension #7155

hinoshiba opened this issue Dec 13, 2023 · 0 comments
Labels
FullDisclosure

Comments

@hinoshiba
Copy link
Owner

Posted by SEC Consult Vulnerability Lab, Research via Fulldisclosure on Dec 12

SEC Consult Vulnerability Lab Security Advisory < 20231206-0 >

=======================================================================

title: Kiosk Escape Privilege Escalation

product: One Identity Password Manager Secure Password Extension

vulnerable version: <5.13.1

fixed version: 5.13.1

CVE number: CVE-2023-48654

impact: critical

homepage:...

https://seclists.org/fulldisclosure/2023/Dec/17
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
FullDisclosure
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@hinoshiba