CVSS 3.1 Score 6.7 of 10 (medium)


Published Dec 25, 2023
Updated: Jan 3, 2024


CVE-2023-49944 is a cyber vulnerability that affects BeyondTrust Privilege Management for Windows (PMfW) before 2023-07-14. This vulnerability allows local administrators to bypass the Challenge Response feature by decrypting the shared key or locating it in process memory. The threat can be mitigated by using the Agent Protection feature. The vulnerability has a risk score of 26 and a base severity of MEDIUM. It has a potential impact on confidentiality, integrity, and availability, with a CVSS vector string of CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H. The exploitability score is 0.8, and no user interaction is required for exploitation.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-49944 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options