KB-2327 Information about the BeyondTrust Remote Support Vulnerability (CVE-2024-12356)

Ryan Good — Wed, 08 Jan 2025 18:43:09 GMT

Current Revision posted to Appian Knowledge Base by Ryan Good on 1/8/2025 6:43:09 PM

On 08-Dec-2024, the U.S. Department of the Treasury was notified by a third-party software service provider, BeyondTrust, that a threat actor had gained access to the Department’s systems by way of a compromised key. A flaw in BeyondTrust’s Remote Support product was later identified, with the accompanying CVE included in CISA’s Known Exploited Vulnerability Catalog.

Appian does not use any products by BeyondTrust and is not impacted by any related CVEs. We will continue to monitor the situation and provide any updates as appropriate.

Additional Notes

The following CVE was released with additional information on the scope of the vulnerability:

CVE-2024-12356 (“BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) Command Injection Vulnerability”)

Supporting Documentation

Affected Versions

This article applies to all supported versions of Appian.

Last reviewed: January 3, 2025

KB-XXXX Information about the BeyondTrust Remote Support Vulnerability (CVE-2024-12356)

Ryan Good — Mon, 06 Jan 2025 21:22:58 GMT

Revision 6 posted to Appian Knowledge Base by Ryan Good on 1/6/2025 9:22:58 PM

Appian does not use any products by BeyondTrust and is not impacted by any related CVEs. We will continue to monitor the situation and provide any updates as appropriate.

Additional Notes

The following CVE was released with additional information on the scope of the vulnerability:

CVE-2024-12356 (“BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) Command Injection Vulnerability”)

Supporting Documentation

Affected Versions

This article applies to all supported versions of Appian.

Last reviewed: January 3, 2025

KB-XXXX Information about the BeyondTrust Remote Support Vulnerability (CVE-2024-12356)

Ryan Good — Mon, 06 Jan 2025 21:21:31 GMT

Revision 5 posted to Appian Knowledge Base by Ryan Good on 1/6/2025 9:21:31 PM

Appian does not use any products by BeyondTrust and is not impacted by any related CVEs. We will continue to monitor the situation and provide any updates as appropriate.

Additional Notes:

The following CVE was released with additional information on the scope of the vulnerability:

CVE-2024-12356 (“BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) Command Injection Vulnerability”)

Supporting Documentation

Affected Versions

This article applies to all supported versions of Appian.

Last reviewed: January 3, 2025

KB-XXXX Information about the BeyondTrust Remote Support Vulnerability (CVE-2024-12356)

Ryan Good — Mon, 06 Jan 2025 21:20:44 GMT

Revision 4 posted to Appian Knowledge Base by Ryan Good on 1/6/2025 9:20:44 PM

Appian does not use any products by BeyondTrust and is not impacted by any related CVEs. We will continue to monitor the situation and provide any updates as appropriate.

Additional Notes:

The following CVE was released with additional information on the scope of the vulnerability:

CVE-2024-12356 (“BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) Command Injection Vulnerability”)

Supporting Documentation

Affected Versions

This article applies to all supported versions of Appian.

Last reviewed: Jan 3, 2025

KB-XXXX Information about the BeyondTrust Remote Support Vulnerability (CVE-2024-12356)

Ryan Good — Mon, 06 Jan 2025 21:17:53 GMT

Revision 3 posted to Appian Knowledge Base by Ryan Good on 1/6/2025 9:17:53 PM

Appian does not use any products by BeyondTrust and is not impacted by any related CVEs. We will continue to monitor the situation and provide any updates as appropriate.

Additional Notes:

The following CVE was released with additional information on the scope of the vulnerability:

CVE-2024-12356 (“BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) Command Injection Vulnerability”)

Supporting Documentation

Affected Versions

This article applies to all supported versions of Appian.

Last reviewed: Jan 3, 2025

KB-XXXX Information about the BeyondTrust Remote Support Vulnerability (CVE-2024-12356)

Ryan Good — Mon, 06 Jan 2025 21:16:22 GMT

Revision 2 posted to Appian Knowledge Base by Ryan Good on 1/6/2025 9:16:22 PM

KB-XXXX Information about the BeyondTrust Remote Support Vulnerability (CVE-2024-12356)

Appian does not use any products by BeyondTrust and is not impacted by any related CVEs. We will continue to monitor the situation and provide any updates as appropriate.

Additional Notes:

The following CVE was released with additional information on the scope of the vulnerability:

CVE-2024-12356 (“BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) Command Injection Vulnerability”)

Supporting Documentation:

Affected Versions

This article applies to all supported versions of Appian.

Last reviewed: Jan 3, 2025

KB-XXXX Information about the BeyondTrust Remote Support Vulnerability (CVE-2024-12356)

Ryan Good — Mon, 06 Jan 2025 21:12:39 GMT

Revision 1 posted to Appian Knowledge Base by Ryan Good on 1/6/2025 9:12:39 PM

KB-XXXX Information about the BeyondTrust Remote Support Vulnerability (CVE-2024-12356)

Appian does not use any products by BeyondTrust and is not impacted by any related CVEs. We will continue to monitor the situation and provide any updates as appropriate.

Additional Notes:

The following CVE was released with additional information on the scope of the vulnerability:

CVE-2024-12356 (“BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) Command Injection Vulnerability”)

Supporting Documentation:

https://www.beyondtrust.com/trust-center/security-advisories/bt24-10
https://thehackernews.com/2024/12/chinese-apt-exploits-beyondtrust-api.html
https://nvd.nist.gov/vuln/detail/CVE-2024-12356

Affected Versions

This article applies to all supported versions of Appian.

Last reviewed: Jan 3, 2025