Platform
other
Component
secure-content-manager
Fixed in
<=23.4
CVE-2024-1973 describes a privilege escalation vulnerability within Secure Content Manager. Attackers can leverage this flaw to gain unauthorized access and perform actions beyond their intended permissions. This vulnerability impacts versions 10.0 up to and including 23.4. A fix is available in versions <=23.4.
The primary impact of CVE-2024-1973 is the potential for unauthorized privilege escalation. A lower-privileged user, by exploiting this vulnerability, can effectively gain the permissions of a higher-privileged user within the Content Manager environment. This could lead to data breaches, system compromise, and disruption of services. The attacker could potentially access sensitive data, modify configurations, or even gain complete control over the affected system. The blast radius extends to any data or functionality accessible by the elevated user account.
CVE-2024-1973 was publicly disclosed on March 25, 2024. The vulnerability's impact, allowing privilege escalation, makes it a potentially attractive target for attackers. Currently, there are no publicly available proof-of-concept exploits. The EPSS score is pending evaluation, but the HIGH CVSS score suggests a medium to high probability of exploitation if a suitable exploit is developed and becomes publicly available.
Exploit Status
EPSS
0.14% (35% percentile)
CVSS Vector
The primary mitigation for CVE-2024-1973 is to upgrade Secure Content Manager to a version <=23.4. If an immediate upgrade is not feasible, consider implementing stricter access controls and monitoring user activity for suspicious behavior. Review existing user permissions and ensure they adhere to the principle of least privilege. While a WAF or proxy cannot directly address this privilege escalation, they can help detect and block malicious requests associated with exploitation attempts. After upgrading, verify the fix by attempting to perform actions with a low-privileged user account and confirming that unauthorized operations are denied.
Actualice OpenText Secure Content Manager a una versión posterior a la 23.4. Esto solucionará la vulnerabilidad de elevación de privilegios. Consulte el artículo KM000027861 en el portal de Micro Focus para obtener más detalles.
Vulnerability analysis and critical alerts directly to your inbox.
CVE-2024-1973 is a HIGH severity vulnerability allowing lower-privileged users to elevate privileges and perform unauthorized actions within Secure Content Manager versions 10.0 through 23.4.
Yes, if you are running Secure Content Manager versions 10.0 to 23.4, you are potentially affected by this vulnerability.
Upgrade Secure Content Manager to a version <=23.4 to remediate the vulnerability. Implement stricter access controls as an interim measure.
Currently, there are no publicly known active exploitation campaigns, but the HIGH severity and potential for privilege escalation make it a likely target.
Refer to the official Secure Content Manager advisory for detailed information and updates regarding CVE-2024-1973.
Upload your dependency file and we'll tell you instantly if this and other CVEs hit you.