CVE-2020-13774: Malicious File Upload
First published: Thu Nov 12 2020(Updated: )
An unrestricted file-upload issue in EditLaunchPadDialog.aspx in Ivanti Endpoint Manager 2019.1 and 2020.1 allows an authenticated attacker to gain remote code execution by uploading a malicious aspx file. The issue is caused by insufficient file extension validation and insecure file operations on the uploaded image, which upon failure will leave the temporarily created files in an accessible location on the server.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ivanti Endpoint Manager | =2019.1 | |
| Ivanti Endpoint Manager | =2020.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2020-13774.
What is the severity of CVE-2020-13774?
The severity of CVE-2020-13774 is critical with a severity value of 9.9.
Which software versions are affected by CVE-2020-13774?
Ivanti Endpoint Manager versions 2019.1 and 2020.1 are affected by CVE-2020-13774.
How does an authenticated attacker exploit CVE-2020-13774?
An authenticated attacker can exploit CVE-2020-13774 by uploading a malicious aspx file through the unrestricted file-upload issue in EditLaunchPadDialog.aspx.
Is there a fix for CVE-2020-13774?
Yes, a fix for CVE-2020-13774 is available. It is recommended to update Ivanti Endpoint Manager to a patched version.
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/tags
- agent/weakness
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/type
- collector/mitre-cve
- source/MITRE
- vendor/ivanti
- canonical/ivanti endpoint manager
- version/ivanti endpoint manager/2019.1
- version/ivanti endpoint manager/2020.1