High Threat Security Alert (A24-09-09): Multiple Vulnerabilities in Ivanti Products


 

Published on: 11 September 2024

  
  

Description:

Ivanti has released security advisories to address multiple vulnerabilities in Ivanti products. Detailed information about the vulnerabilities can be found at:
https://forums.ivanti.com/s/article/Security-Advisory-EPM-September-2024-for-EPM-2024-and-EPM-2022
https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Workspace-Control-IWC

Reports indicate that multiple remote code execution vulnerabilities (CVE-2024-29847, CVE-2024-32840, CVE-2024-32842, CVE-2024-32843, CVE-2024-32845, CVE-2024-32846, CVE-2024-32848, CVE-2024-34779, CVE-2024-34783 and CVE-2024-34785) in Ivanti Endpoint Manager (EPM) are at high risk of exploitation. System administrators are advised to take immediate actions to patch your affected systems to mitigate the elevated risk of cyber attacks.

 

Affected Systems:

  • Ivanti Endpoint Manager (EPM) 2024 flat, and versions prior to 2022 SU6
  • Ivanti Workspace Control (IWC) versions prior to 10.18.99.0

Please note that older unsupported and End-Of-Life (EOL) versions are also vulnerable with no security updates provided. System administrators should arrange to upgrade the unsupported and EOL versions to supported versions or migrate to other supported technology.

For detailed information of the affected systems, please refer to the corresponding security advisory at vendor's website.

 

Impact:

Successful exploitation of the vulnerabilities could lead to remote code execution, denial of service, elevation of privilege, information disclosure, security restriction bypass or spoofing on an affected system.

 

Recommendation:

Patches for affected systems are available. System administrators of affected systems should follow the recommendations provided by the vendor and take immediate actions to mitigate the risk.

 

More Information:

  • https://www.ivanti.com/blog/september-2024-security-update
  • https://forums.ivanti.com/s/article/Security-Advisory-EPM-September-2024-for-EPM-2024-and-EPM-2022
  • https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Workspace-Control-IWC
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-8012
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-8191
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-8320 (to CVE-2024-8322)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-8441
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-29847
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-32840
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-32842 (to CVE-2024-32843)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-32845 (to CVE-2024-32846)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-32848
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34779
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34783
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34785
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-37397
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-44103 (to CVE-2024-44107)


Tag: Ivanti , Endpoint Manager , Ivanti Workspace Control
Tags