A vulnerability, which was classified as critical, has been found in Broadcom Symantec Privileged Access Management up to 3.4.6/4.1.7. This issue affects some unknown processing of the component HTTP Request Handler. The manipulation leads to command injection.
The identification of this vulnerability is CVE-2024-38494. The attack may be initiated remotely. There is no exploit available.