Ivanti EPM Agent Portal Command Execution

This module leverages an unauthenticated RCE in Ivanti's EPM Agent Portal where a RPC client can invoke a method which will run an attacker-specified string on the remote target as NT AUTHORITY\SYSTEM. This vulnerability is present in versions prior to EPM 2021.1 Su4 and EPM 2022 Su2. Module...

Ivanti EPM Agent Portal Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rex/proto/msnrtp/client' class MetasploitModule 'Ivanti EPM Agent Portal Command Execution', 'Description' = %q This module leverages an unauthenticated RCE in...

Ivanti EPM Agent Portal Command Execution Exploit

This Metasploit module leverages an unauthenticated remote command execution vulnerability in Ivanti's EPM Agent Portal where an RPC client can invoke a method which will run an attacker-specified string on the remote target as NT AUTHORITY\SYSTEM. This vulnerability is present in versions prior ...

Exploit for Improper Input Validation in Ivanti Endpoint_Manager

CVE-2023-28324 POC for CVE-2023-28324 affecting Ivanti EPM...

CVE-2023-28324

creationtimestamp| type| source ---|---|--- 2023-07-01 07:15:53+00:00| seen| https://t.me/cibsecurity/65845 2024-09-16 14:34:03+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/8540 2024-09-18 17:40:04+00:00| seen| https://t.me/truesecator/6220 2024-09-22 11:11:47+00:00| seen|...

CVE-2023-28324

A improper input validation vulnerability exists in Ivanti Endpoint Manager 2022 and below that could allow privilege escalation or remote code execution...

CVE-2023-28324

Ivanti Endpoint Manager (EPM) contains a vulnerability in the Agent Portal where AgentPortal.exe (and related components) accepts unauthenticated RPC calls that can be used to execute arbitrary commands with SYSTEM privileges. The issue stems from improper input validation in the Agent Portal dia...

SA-2023-06-06-CVE-2023-28324

SECURITY ADVISORY 06-06-2023 Product Affected: Ivanti Endpoint Manager A vulnerability was recently discovered for Ivanti Endpoint Manager for all versions of 2022 SU2 and below. Please patch to the latest version of EPM 2022. If you are using 2021.1, please patch to SU4 and apply the hotfix as...

VulnCheck KEV: CVE-2021-28324

Windows SMB Information Disclosure Vulnerability...

CVE-2021-28324

Windows SMB Information Disclosure Vulnerability...

CVE-2021-28324

Windows SMB Information Disclosure Vulnerability...

CVE-2021-28324

Technical details about CVE-2021-28324 are not publicly disclosed in the provided documents. Availability of affected products or remediation cannot be confirmed here. Monitor for updates from Microsoft and other vendors.

CVE-2021-28324 Windows SMB Information Disclosure Vulnerability

...

Microsoft Windows SMB Information Disclosure (CVE-2021-28324)

An information disclosure vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...

CVE-2020-28324

...

CVE-2020-28324

CVE-2020-28324 entry is rejected and not used.