CVE-2024-12908

Published Dec 26, 2024

Last updated 2 months ago

CVSS medium 6.9

Overview

Description
Delinea addressed a reported case on Secret Server v11.7.31 (protocol handler version 6.0.3.26) where, within the protocol handler function, URI's were compared before normalization and canonicalization, potentially leading to over matching against the approved list. If this attack were successfully exploited, a remote attacker may be able to convince a user to visit a malicious web-page, or open a malicious document which could trigger the vulnerable handler, allowing them to execute arbitrary code on the user's machine. Delinea added additional validation that the downloaded installer's batch file was in the expected format.
Source
1443cd92-d354-46d2-9290-d812316ca43a
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
6.9
Impact score
4.7
Exploitability score
1.6
Vector string
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:L/A:N
Severity
MEDIUM

Weaknesses

1443cd92-d354-46d2-9290-d812316ca43a
CWE-94

Social media

Hype score
Not currently trending

  1. #exploit 1. CVE-2024-3393: Palo Alto Networks PAN-OS Malicious DNS Packet Vulnerability (DoS) - https://t.co/EoSn0IpVU9 2. CVE-2024-12908: Delinea Protocol Handler - RCE via Update Process - https://t.co/1Vgu4OZ84E 3. CVE-2024-53677: Unrestricted Upload of File with Dangerous

    @ksg93rd

    6 Jan 2025

    456 Impressions

    1 Retweet

    6 Likes

    2 Bookmarks

    0 Replies

    0 Quotes

  2. All I want for Christmas is U(RL handlers not vulnerable to RCE)... AmberWolf has published information about CVE-2024-12908, a Remote Code Execution vulnerability in the Delinea Secret Server Protocol Handler. You can read our blog & PoC here: https://t.co/oW4E5V4KFT

    @AmberWolfSec

    27 Dec 2024

    1459 Impressions

    5 Retweets

    21 Likes

    7 Bookmarks

    2 Replies

    0 Quotes

  3. CVE-2024-12908 Delinea addressed a reported case on Secret Server v11.7.31 (prot... https://t.co/bqxKTXU3Eo Customizable Vulnerability Alerts: https://t.co/U7998fz7yk

    @VulmonFeeds

    26 Dec 2024

    35 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. CVE-2024-12908 Delinea addressed a reported case on Secret Server v11.7.31 (protocol handler version 6.0.3.26) where, within the protocol handler function, URI's were compared befor… https://t.co/axVru6aR6R

    @CVEnew

    26 Dec 2024

    466 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

References