Local Privilege Escalation Vulnerability Affects EPMM Appliance
CVE-2024-22026
What is CVE-2024-22026?
A local privilege escalation vulnerability in EPMM before 12.1.0.0 allows an authenticated local user to bypass shell restriction and execute arbitrary commands on the appliance.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
EPMM 12.1.0.0
EPMM 12.0.0.0
EPMM 11.12.0.1
News Articles
AttackerKBCVE-2024-22026securekomodo's assessment of CVE-2024-22026 | AttackerKB
CVE-2024-22026 is a local privilege escalation vulnerability in Ivanti EPMM (formerly MobileIron) server versions prior to 12.1.0.0, 12.0.0.0, and 11.12.0.1. T…
Help Net SecurityCVE-2024-22026PoC exploit for Ivanti EPMM privilege escalation flaw released (CVE 2024-22026) - Help Net Security
Technical details about and a PoC exploit for CVE-2024-22026, a privilege escalation bug affecting Ivanti EPMM, has been released.
The Hacker NewsCVE-2024-22026CISA Warns of Actively Exploited D-Link Router Vulnerabilities - Patch Now
CISA has added two actively exploited vulnerabilities to its catalog. Make sure to apply vendor-provided mitigations by June 6, 2024, to stay safe.
References
CVSS V3.1
CVSS V3.0
Timeline
Vulnerability published
- 📰
First article discovered by CybersecurityNews