CVE-2021-44529
CVE-2021-44529
In short
An attacker can inject and run malicious code on Ivanti EPM Cloud Services Appliance without needing a password, though with limited access rights. This is dangerous because it allows unauthorized control over the system.
Technical detail
CWE-94 code injection vulnerability in Ivanti EPM CSA permits unauthenticated remote code execution via unsanitized input, executing with 'nobody' user privileges. Attack requires no authentication and directly compromises system integrity and confidentiality.
Summary generated and translated by AI from the official description.
A code injection vulnerability in the Ivanti EPM Cloud Services Appliance (CSA) allows an unauthenticated user to execute arbitrary code with limited permissions (nobody).
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · Ivanti EPMpublic PoCs found — 3
cve_referencepacketstormsecurity.com/files/166383/Ivanti-Endpoint-Manager-CSA-4.5-4.6-Remote-Code-Execution.htmlunverifiedcve_referencepacketstormsecurity.com/files/170590/Ivanti-Cloud-Services-Appliance-CSA-Command-Injection.htmlunverifiedexploitdbwww.exploit-db.com/exploits/50833unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://packetstormsecurity.com/files/166383/Ivanti-Endpoint-Manager-CSA-4.5-4.6-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/170590/Ivanti-Cloud-Services-Appliance-CSA-Command-Injection.htmlhttps://forums.ivanti.com/s/article/SA-2021-12-02https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-44529