1 results (0.004 seconds)
CVSS: 9.8EPSS: 94%CPEs: 2EXPL: 7
CVSS: 9.8EPSS: 94%CPEs: 2EXPL: 7CVE-2021-44529 – Ivanti Endpoint Manager Cloud Service Appliance (EPM CSA) Code Injection Vulnerability
https://notcve.org/view.php?id=CVE-2021-44529
08 Dec 2021 — A code injection vulnerability in the Ivanti EPM Cloud Services Appliance (CSA) allows an unauthenticated user to execute arbitrary code with limited permissions (nobody). Una vulnerabilidad de inyección de código en Ivanti EPM Cloud Services Appliance (CSA) permite a un usuario no autenticado ejecutar código arbitrario con permisos limitados (nobody) Ivanti Endpoint Manager CSA versions 4.5 and 4.6 suffer from an unauthenticated remote code execution vulnerability. Ivanti Endpoint Manager Cloud Service App... • https://packetstorm.news/files/id/170590 • CWE-94: Improper Control of Generation of Code ('Code Injection') •