CVE List

CVE-2020-13772

Moderate 5.3

In /ldclient/ldprov.cgi in Ivanti Endpoint Manager through 2020.1.1, an attacker is able to disclose information about the server operating system, local pathnames, and environment variables with no authentication required.

Published November 16, 2020.

Affected software

Ivanti Endpoint Manager

Reference links

Sign Up for Alerts