References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

Change History

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-276

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-276

https://github.com/Henkel-CyberVM/CVEs/tree/main/CVE-2024-51162

An issue in Audimex EE v.15.1.20 and before allows a remote attacker to escalate privileges.

An issue in Audimex EE versions 15.1.20 and earlier allowing a remote attacker to escalate privileges. Analyzing the offline client code, it was identified that it is possible for any user (with any privilege) of Audimex to dump the whole Audimex database. This gives visibility upon password hashes of any user, ongoing audit data and more.

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-276

An issue in Audimex EE v.15.1.20 and before allows a remote attacker to escalate privileges.

MITRE https://en.web-audimex.com/ee-auditmanagement [No types assigned]

MITRE https://github.com/Cameleon037/CVEs/blob/main/CVE-2024-51162/README.md [No types assigned]