CVE-2024-50329

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Nov 12, 2024

Updated: Nov 13, 2024

CWE ID 22

Summary

CVE-2024-50329 is a newly disclosed vulnerability in Ivanti Endpoint Manager. This issue, which affects versions prior to the November 2024 Security Update and 2022 SU6, allows unauthenticated attackers to execute remote code through a path traversal vulnerability. User interaction is required to exploit this weakness, making it a potential threat to organizations that rely on Ivanti Endpoint Manager for endpoint management. It is crucial that users install the latest security updates as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Ivanti Endpoint Manager

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/zvzY62
https://www.cve.org/CVERecord?id=CVE-2024-50329
https://nvd.nist.gov/vuln/detail/CVE-2024-50329

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

Know What Matters

For Customers

For Partners

CVE-2024-50329

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations