After comprehensive testing an authentication bypass vulnerability in the RDP component of One Identity Safeguard for Privileged Sessions has been determined to have potential impact on Safeguard for Privileged Sessions on Demand as well.
This could allow man-in-the-middle attackers to obtain unencrypted information to access privileged sessions on target resources.
This vulnerability is identified by CVE-2024-40595.
One Identity has conducted emergency patching and maintenance to close this potential security issue.
For current status, please see the One Identity Starling Status page.
© 2024 One Identity LLC. ALL RIGHTS RESERVED. Conditions d’utilisation Confidentialité Cookie Preference Center