Local Authenticated Attacker Can Delete Arbitrary Files in Ivanti Patch SDK Before v9.7.703
CVE-2024-10256

7.1HIGH

Key Information:

Vendor: Ivanti
Status: Patch Sdk; Endpoint Manager; Security Controls; Patch For Configuration Manager
Vendor: CVE Published:; 10 December 2024

Summary

The vulnerability presents a scenario where the Ivanti Patch SDK before version 9.7.703 exposes insufficient permissions, allowing a local authenticated attacker to execute unauthorized file deletions. This weakness could lead to significant disruptions in software management and maintenance operations, as sensitive files may be targeted and removed without proper permissions.

Affected Version(s)

Endpoint Manager 2024 November Security Update

Neurons Agent Platform 2024.4

Neurons for Patch Management 2024.4

References

https://forums.ivanti.com/s/article/Security-Advisory-Iva...

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 10, 2024
Vulnerability Reserved
Oct 22, 2024