CVE-2024-25653 Information

Description

Broken Access Control in the Report functionality of Delinea PAM Secret Server 11.4 allows unprivileged users when Unlimited Admin Mode is enabled to view system reports and modify custom reports via the Report functionality in the Web UI.

Reference

https://www.cvcn.gov.it/cvcn/cve/CVE-2024-25653