Ivanti - Landesk Management Suite CVE

Filtered by vendor Ivanti Subscribe

Filtered by product Landesk Management Suite

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-12374	1 Ivanti	1 Landesk Management Suite	2019-06-04	6.8 MEDIUM	8.1 HIGH
A SQL Injection vulnerability exists in Ivanti LANDESK Management Suite (LDMS, aka Endpoint Manager) 10.0.1.168 Service Update 5 due to improper username sanitization in the Basic Authentication implementation in core/provisioning.secure/ProvisioningSecure.asmx in Provisioning.Secure.dll.

Vulnerabilities (CVE)