2 matches found
CVE-2019-12374
A SQL Injection vulnerability exists in Ivanti LANDESK Management Suite LDMS, aka Endpoint Manager 10.0.1.168 Service Update 5 due to improper username sanitization in the Basic Authentication implementation in core/provisioning.secure/ProvisioningSecure.asmx in Provisioning.Secure.dll...
CVE-2019-12374
The CVE-2019-12374 entry describes a SQL Injection in Ivanti LANDESK Management Suite (LDMS/Endpoint Manager) version 10.0.1.168 Service Update 5, caused by improper username sanitization in the Basic Authentication path: core/provisioning.secure/ProvisioningSecure.asmx in Provisioning.Secure.dll...