XML Injection with Endpoint Manager 2022. 3 and below causing a download of a malicious file to run and possibly execute to gain unauthorized privileges.
References
Link | Resource |
---|---|
https://forums.ivanti.com/s/article/Security-Advisory-for-Ivanti-Endpoint-Manager-Client-CVE-2022-35259?language=en_US | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: hackerone
Published: 2022-12-05T00:00:00
Updated: 2022-12-05T00:00:00
Reserved: 2022-07-06T00:00:00
Link: CVE-2022-35259
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-12-05T22:15:10.683
Modified: 2022-12-07T04:29:38.620
Link: CVE-2022-35259
JSON object: View
Redhat Information
No data.
CWE