Описание
Ivanti Endpoint Security (formerly HEAT Endpoint Management and Security Suite) 8.5 Update 1 and earlier allows an authenticated user with low privileges and access to the local network to bypass application whitelisting when using the Application Control module on Ivanti Endpoint Security in lockdown mode.
Ссылки
- Permissions Required
- Permissions Required
Уязвимые конфигурации
Конфигурация 1Версия до 8.5 (включая)
Одно из
cpe:2.3:a:ivanti:endpoint_security:*:*:*:*:*:*:*:*
cpe:2.3:a:ivanti:endpoint_security:8.5:update_1:*:*:*:*:*:*
EPSS
Процентиль: 68%
0.00571
Низкий
7.5 High
CVSS3
6 Medium
CVSS2
Дефекты
CWE-863
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
Ivanti Endpoint Security (formerly HEAT Endpoint Management and Security Suite) 8.5 Update 1 and earlier allows an authenticated user with low privileges and access to the local network to bypass application whitelisting when using the Application Control module on Ivanti Endpoint Security in lockdown mode.
EPSS
Процентиль: 68%
0.00571
Низкий
7.5 High
CVSS3
6 Medium
CVSS2
Дефекты
CWE-863