THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Zendesk (Helpdesk and Chat)

Ok

PUBLISHED

CVE-2024-22058

Assigner:hackerone (36234546-b8fa-4601-9d6f-f4e334aa8ea1)
Reserved:2024-01-05
Published:2024-05-31
Updated:2024-06-07

Description

A buffer overflow allows a low privilege user on the local machine that has the EPM Agent installed to execute arbitrary code with elevated permissions in Ivanti EPM 2021.1 and older.



HIGH: 7.8CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Product status

Default status
unaffected

2021
affected

References

https://forums.ivanti.com/s/article/CVE-2024-22058-Privilege-Escalation-for-Ivanti-Endpoint-Manager-EPM

cve.org CVE-2024-22058

nvd.nist.gov CVE-2024-22058

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-22058