CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2024-51505: An issue was discovered in Atos Eviden IDRA before 2.7.1. A highly trusted role (Config Admin) could leverage a race condition to escalate privileges.

8.0 CVSS

Description

An issue was discovered in Atos Eviden IDRA before 2.7.1. A highly trusted role (Config Admin) could leverage a race condition to escalate privileges.

Classification

CVE ID: CVE-2024-51505

CVSS Base Severity: HIGH

CVSS Base Score: 8.0

CVSS Vector: CVSS:3.1/AC:H/AV:N/A:H/C:H/I:H/PR:H/S:C/UI:N

Affected Products

Vendor: n/a

Product: n/a

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.05% (probability of being exploited)

EPSS Percentile: 13.04% (scored less or equal to compared to others)

EPSS Date: 2025-03-19 (when was this score calculated)

References

https://eviden.com
https://support.bull.com/ols/product/security/psirt/security-bulletins/potential-privilege-escalation-in-idpki-psirt-1335-tlp-clear-version-2-10-cve-2024-39327-cve-2024-39328-cve-2024-51505/view

Timeline

2025-02-19 00:31:35 UTC
CVE

An issue was discovered in Atos Eviden IDRA before 2.7.1. A highly trusted role (Config Admin) could leverage a race condition to escalate privileges.