CVE-2023-38344

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Sep 21, 2023

Updated: Sep 25, 2023

Summary

CVE-2023-38344 is a file disclosure vulnerability affecting Ivanti Endpoint Manager versions prior to 2022 SU4. This issue resides in the GetFileContents SOAP action accessible through /landesk/managementsuite/core/core.secure/OsdScript.asmx. An authenticated attacker can exploit the vulnerability by supplying malicious paths, allowing them to read arbitrary files, including sensitive ones like the private key used for remote access authentication. This puts systems at risk of unauthorized access and potential data breaches.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Ivanti Endpoint Manager

Affected Vendors

Ivanti Software Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r_ySRL
https://www.cve.org/CVERecord?id=CVE-2023-38344
https://nvd.nist.gov/vuln/detail/CVE-2023-38344

Back to Vulnerability Database