CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2023-28129
https://notcve.org/view.php?id=CVE-2023-28129
DSM 2022.2 SU2 and all prior versions allows a local low privileged account to execute arbitrary OS commands as the DSM software installation user. • https://forums.ivanti.com/s/article/SA-2023-07-26-CVE-2023-28129 •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2020-12441
https://notcve.org/view.php?id=CVE-2020-12441
Denial-of-Service (DoS) in Ivanti Service Manager HEAT Remote Control 7.4 due to a buffer overflow in the protocol parser of the ‘HEATRemoteService’ agent. The DoS can be triggered by sending a specially crafted network packet. Una Denegación de Servicio (DoS) en Ivanti Service Manager HEAT Remote Control versión 7.4, debido a un desbordamiento del búfer en el analizador de protocolos del agente "HEATRemoteService". El DoS se puede activar mediante el envío de un paquete de red especialmente diseñado • https://forums.ivanti.com/s/article/Release-Notes-for-DSM-2020-1 https://insinuator.net/2020/06/security-advisories-for-ivanti-dsm-suite • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •