UpKeeper Product Security Update Advisory

Nov 28 2024

Overview

An update has been released to address vulnerabilities in UpKeeper Products. Users of the affected versions are advised to update to the latest version.

Affected Products

CVE-2024-9478, CVE-2024-9479

upKeeper Instant Privilege Access versions: ~ 1.2 (excluded)

Resolved Vulnerabilities

Improper privilege management vulnerabilities in the upKeeper solution that could allow privilege escalation (CVE-2024-9478, CVE-2024-9479)

Vulnerability Patches

Vulnerability patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2024-9478

upKeeper Instant Privilege Access version: 1.2

Referenced Sites

[1] CVE-2024-9478 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-9478

[2] CVE-2024-9478 Improper Privilege Management – Process

https://support.upkeeper.se/hc/en-us/articles/17007638130716-CVE-2024-9478-Improper-Privilege-Management-Process

[3] CVE-2024-9479 Detail

improper Privilege Management – Process https://nvd.nist.gov/vuln/detail/CVE-2024-9479

[4] CVE-2024-9479 Improper Privilege Management – Subprocess

https://support.upkeeper.se/hc/en-us/articles/17007729905436-CVE-2024-9479-Improper-Privilege-Management-Subprocess

UpKeeper Product Security Update Advisory

IBM Product Security Update Advisory

ManageEngine (Analytics Plus) Product November 2024 Security Update Advisory

Tags:

IBM Product Security Update Advisory

ManageEngine (Analytics Plus) Product November 2024 Security Update Advisory