CVE-2024-7572

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Dec 10, 2024
CWE ID 732

Summary

CVE-2024-7572 is a vulnerability affecting Ivanti DSM (Desktop and Mobile Manager) versions prior to 2024.3.5740. An attacker who has already gained local authentication can exploit this weakness to delete arbitrary files without proper permissions. This issue poses a potential security risk, as unauthorized file deletion can lead to data loss or system instability. It is strongly recommended that Ivanti DSM users upgrade to the latest patched version to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share