Critical One Identity Manager Vulnerability Let Attackers Escalate Privileges
\n \t
\n
<\/BR>
\n
\n \t
\n
<\/BR><\/p>\n
A critical Insecure Direct Object Reference (IDOR) vulnerability has been identified in One Identity Manager, a widely used identity and access management solution.\u00a0<\/p>\n
This vulnerability, officially tracked as CVE-2024-56404, allows unauthorized privilege escalation<\/a> under specific configurations.\u00a0<\/p>\n The issue affects only On-Premise installations and does not impact customers using the Identity Manager<\/a> On Demand or Starling Edition.<\/p>\n The IDOR vulnerability arises when applications fail to enforce proper access control mechanisms on user-supplied input, such as object references in URLs or parameters.<\/p>\n Are you from SOC\/DFIR Teams? \u2013\u00a0Analyse Malware Files & Links with ANY.RUN Sandox ->\u00a0Try for Free<\/a><\/strong><\/p>\n Attackers can exploit this by manipulating object identifiers to gain unauthorized access to resources or escalate privileges. In the context of Identity Manager, this could allow attackers to:<\/p>\n Such vulnerabilities<\/a> are particularly dangerous when chained with other exploits, enabling attackers to achieve vertical privilege escalation, where they gain access to higher-level permissions than initially granted.<\/p>\n The vulnerability impacts customers using One Identity Manager versions 9.0.x through 9.2.1. Specifically:<\/p>\n It is critical for affected organizations to address this flaw immediately to prevent potential exploitation.<\/p>\n One Identity has released<\/a> hotfixes for all the impacted versions to address this vulnerability<\/a>. Customers are urged to:<\/p>\n Apply the relevant hotfix for their version,<\/p>\n Alternatively, upgrade to version 9.3, which resolves the vulnerability entirely.<\/p>\n The hotfixes include robust access control mechanisms designed to mitigate IDOR risks by validating user permissions before granting access to sensitive resources.<\/p>\n Exploiting IDOR vulnerabilities can lead to severe consequences, including unauthorized data access, account takeovers, and system compromise.<\/p>\n Hence, by addressing these vulnerabilities proactively, organizations can safeguard their systems against privilege escalation threats and maintain robust security postures.<\/p>\n Integrating Application Security into Your CI\/CD Workflows Using Jenkins & Jira ->\u00a0Free Webinar<\/a><\/strong><\/strong><\/p>\n The post Critical One Identity Manager Vulnerability Let Attackers Escalate Privileges<\/a> appeared first on Cyber Security News<\/a>.<\/p>\n<\/div>\nUnderstanding the Vulnerability<\/strong><\/h2>\n
\n
\n
Resolution and Mitigation<\/strong><\/h2>\n
<\/ol>\n
\n