Author | CVE ID | Product | Credit |
---|---|---|---|
D4mianWayne |
CVE-2024-37397 |
Ivanti Endpoint Manager |
06fe5fd2bc53027c4a3b7e395af0b850e7b8a044 (Trend Micro) |
A vulnerability in Ivanti Endpoint Manager allows remote attackers to disclose sensitive information without requiring authentication. This flaw arises from improper handling of XML External Entity (XXE) references in the ImportXml
method. Specifically, the vulnerability is triggered by the actionXml
parameter, which is processed during the execution of the SetActionStatus
action via a SOAP request.
Note: Although a valid historyEntryIDN is necessary for exploitation, it is predictable and falls within a certain range, making it possible to brute-force.
A detailed blog post will be released soon.
In the patched version, XmlResolver
was marked as null
effectively remediating the XXE vulnerability in the affected function.