VDB

CVE-2024-36457

CVE-2024-36457 PUBLISHED CVSS 5.300000190734863 MEDIUM

The vulnerability allows an attacker to bypass the authentication requirements for a specific PAM endpoint.

EPSS 0.03% · 8.3th percentile

Risk Scores

CVSS 4.0
5.300000190734863
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
EPSS Score
0.03%
8.3th percentile

Affected Products

VendorProductVersions
BroadcomSymantec Privileged Access Management3.4.6, *, 4.1.0 - 4.1.7

Timeline

  • Jul 15, 2024 CVE Published
  • Jul 15, 2024 PoC Published
  • Jul 16, 2024 EPSS Score
  • Aug 7, 2024 EPSS Score
  • Aug 29, 2024 EPSS Score
  • Sep 19, 2024 EPSS Score
  • Oct 4, 2024 Coalition ESS Score
  • Oct 11, 2024 EPSS Score
  • Nov 2, 2024 EPSS Score
  • Nov 12, 2024 Coalition ESS Score
  • Nov 12, 2024 CVE Updated
  • Nov 24, 2024 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›