CVE-2024-23764

Certain WithSecure products allow Local Privilege Escalation. This affects WithSecure Client Security 15 and later, WithSecure Server Security 15 and later, WithSecure Email and Server Security 15 and later, and WithSecure Elements Endpoint Protection 17 and later.
Configurations

Configuration 1 (hide)

cpe:2.3:a:withsecure:client_security:15:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:withsecure:server_security:15:*:*:*:*:*:*:*

Configuration 3 (hide)

cpe:2.3:a:withsecure:email_and_server_security:15:*:*:*:*:*:*:*

Configuration 4 (hide)

cpe:2.3:a:withsecure:elements_endpoint_protection:17:*:*:*:*:*:*:*

History

21 Nov 2024, 08:58

Type Values Removed Values Added
References () https://www.withsecure.com/en/support/security-advisories - Product () https://www.withsecure.com/en/support/security-advisories - Product
References () https://www.withsecure.com/en/support/security-advisories/cve-2024-23764 - Vendor Advisory () https://www.withsecure.com/en/support/security-advisories/cve-2024-23764 - Vendor Advisory

15 Feb 2024, 17:57

Type Values Removed Values Added
CWE CWE-269
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 6.7
Summary
  • (es) Ciertos productos WithSecure permiten la escalada de privilegios locales. Esto afecta a WithSecure Client Security 15 y posteriores, WithSecure Server Security 15 y posteriores, WithSecure Email and Server Security 15 y posteriores, y WithSecure Elements Endpoint Protection 17 y posteriores.
References () https://www.withsecure.com/en/support/security-advisories - () https://www.withsecure.com/en/support/security-advisories - Product
References () https://www.withsecure.com/en/support/security-advisories/cve-2024-23764 - () https://www.withsecure.com/en/support/security-advisories/cve-2024-23764 - Vendor Advisory
First Time Withsecure
Withsecure server Security
Withsecure elements Endpoint Protection
Withsecure email And Server Security
Withsecure client Security
CPE cpe:2.3:a:withsecure:client_security:15:*:*:*:*:*:*:*
cpe:2.3:a:withsecure:elements_endpoint_protection:17:*:*:*:*:*:*:*
cpe:2.3:a:withsecure:server_security:15:*:*:*:*:*:*:*
cpe:2.3:a:withsecure:email_and_server_security:15:*:*:*:*:*:*:*

08 Feb 2024, 19:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-02-08 19:15

Updated : 2025-05-15 20:15


NVD link : CVE-2024-23764

Mitre link : CVE-2024-23764

CVE.ORG link : CVE-2024-23764


JSON object : View

Products Affected

withsecure

  • server_security
  • client_security
  • elements_endpoint_protection
  • email_and_server_security
CWE
CWE-269

Improper Privilege Management