An issue was discovered in BeyondTrust Privilege Management for Windows through 5.6. When adding the Add Admin token to a process, and specifying that it runs at medium integrity with the user owning the process, this security token can be stolen and applied to arbitrary processes.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HBeyondtrust Privilege Management For Windows
APPBeyondtrust5.6< 5.6
Related vulnerabilities
Prior to 25.4.270.0, when wmic.exe is elevated with a full admin token the user can stop the Defendpoint servi...
Prior to version 25.4.270.0, a local authenticated attacker can manipulate user profile files to add illegitim...
Prior to 25.2, a local authenticated attacker can elevate privileges on a system with Privilege Management for...
An issue was discovered in BeyondTrust Privilege Management for Windows through 5.6. If the publisher criteria...
An issue was discovered in BeyondTrust Privilege Management for Windows through 5.6. When specifying a program...