Ivanti DSM 2024.2 vulnerability allows elevated privileges with code execution
CVE-2024-29821

Currently unrated

Key Information:

Vendor: Ivanti
Status: Desktop \& Server Management
Vendor: CVE Published:; 18 October 2024

What is CVE-2024-29821?

Ivanti DSM < version 2024.2 allows authenticated users on the local machine to run code with elevated privileges due to insecure ACL via unspecified attack vector.

References

https://forums.ivanti.com/s/article/SA-2024-07-12-CVE-202...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 18, 2024

CVE-2024-29821 Data

JSON