What is the vulnerability ID for this issue?

The vulnerability ID for this issue is CVE-2023-38344.

What is the severity of CVE-2023-38344?

The severity of CVE-2023-38344 is medium with a severity value of 6.5.

What is affected by CVE-2023-38344?

Ivanti Endpoint Manager versions up to 2022 SU4 are affected by CVE-2023-38344.

How can I fix CVE-2023-38344?

To fix CVE-2023-38344, update Ivanti Endpoint Manager to version 2022 SU4 or newer.

Vulnerability/
CVE-2023-38344

medium

6.5

CWE

200

21/9/2023

25/9/2024

CVE-2023-38344: Infoleak

Q: How can this vulnerability be exploited?

This vulnerability can be exploited through the GetFileContents SOAP action exposed via /landesk/managementsuite/core/core.secure/OsdScript.asmx by not sufficiently restricting user-supplied paths.

First published: Thu Sep 21 2023(Updated: )

An issue was discovered in Ivanti Endpoint Manager before 2022 SU4. A file disclosure vulnerability exists in the GetFileContents SOAP action exposed via /landesk/managementsuite/core/core.secure/OsdScript.asmx. The application does not sufficiently restrict user-supplied paths, allowing for an authenticated attacker to read arbitrary files from a remote system, including the private key used to authenticate to agents for remote access.

Credit: cve@mitre.org cve@mitre.org

Affected Software	Affected Version	How to fix
Ivanti Endpoint Manager	<2022
Ivanti Endpoint Manager	=2022
Ivanti Endpoint Manager	=2022-su1
Ivanti Endpoint Manager	=2022-su2
Ivanti Endpoint Manager	=2022-su3

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2023-38344.
What is the severity of CVE-2023-38344?
The severity of CVE-2023-38344 is medium with a severity value of 6.5.
What is affected by CVE-2023-38344?
Ivanti Endpoint Manager versions up to 2022 SU4 are affected by CVE-2023-38344.
How can this vulnerability be exploited?
This vulnerability can be exploited through the GetFileContents SOAP action exposed via /landesk/managementsuite/core/core.secure/OsdScript.asmx by not sufficiently restricting user-supplied paths.
How can I fix CVE-2023-38344?
To fix CVE-2023-38344, update Ivanti Endpoint Manager to version 2022 SU4 or newer.

collector/nvd-index
agent/references
agent/author
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/description
agent/first-publish-date
agent/event
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/weakness
agent/last-modified-date
agent/tags
vendor/ivanti
canonical/ivanti endpoint manager
version/ivanti endpoint manager/2022
version/ivanti endpoint manager/2022-su1
version/ivanti endpoint manager/2022-su2
version/ivanti endpoint manager/2022-su3

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.