CVE-2024-12356 | Attaxion

CISA Known Exploited Vulnerability (KEV)

Name

BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) Command Injection Vulnerability

Exploit added

December 19, 2024

Action due

December 27, 2024

Action required

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Description

A critical vulnerability has been discovered in Privileged Remote Access (PRA) and Remote Support (RS) products which can allow an unauthenticated attacker to inject commands that are run as a site user.

References

https://nvd.nist.gov/vuln/detail/CVE-2024-12356
https://www.beyondtrust.com/trust-center/security-advisories/bt24-10
https://www.cve.org/CVERecord?id=CVE-2024-12356

Weakness Enumeration

CWE-ID	CWE Name
CWE-77	Improper Neutralization of Special Elements used in a Command (‘Command Injection’)

Details

Source:
NVD

Published:
December 17, 2024

Updated:
December 20, 2024

Risk information

CVSS v3

Base score:
9.8

Severity:

CRITICAL

Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2

Not defined