CVE-2023-48654

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Dec 25, 2023
Updated: Jan 3, 2024

Summary

CVE-2023-48654 is a new vulnerability affecting One Identity Password Manager versions prior to 5.13.1. This issue allows an attacker to escape the Kiosk mode of the password manager on a Windows client. The product's feature that enables users to reset Active Directory passwords at the login screen employs a Chromium-based browser in Kiosk mode. The exploit involves manipulating the browser to open a new window and access cmd.exe as NT AUTHORITY\\SYSTEM, escalating privileges and potentially compromising the system.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share