PT-2020-13669 · Ivanti · Ivanti Endpoint Manager

Andrei Constantin Scutariu

Published

2020-11-12

Updated

2020-11-24

CVE-2020-13770

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Ivanti Endpoint Manager versions prior to 2020.1.2

Description The issue allows privilege escalation from a local standard or service account with SeImpersonatePrivilege, such as NT AUTHORITYNETWORK SERVICE, to NT AUTHORITYSYSTEM due to several services accessing named pipes with default or overly permissive security attributes.

Recommendations For Ivanti Endpoint Manager versions prior to 2020.1.2, update to version 2020.1.2 or later to resolve the issue.

Fix

Incorrect Default Permissions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-276

Related Identifiers

CVE-2020-13770

Affected Products

Ivanti Endpoint Manager

PT-2020-13669 · Ivanti · Ivanti Endpoint Manager

CVE-2020-13770

Weakness Enumeration

Related Identifiers

Affected Products

References · 4