CVE-2024-44103

Name of the Vulnerable Software and Affected Versions: Ivanti Workspace Control versions 10.18.0.0 and below

Description: The issue is related to DLL hijacking in the management console of Ivanti Workspace Control, which allows a local authenticated attacker to escalate their privileges. This is due to the use of an insecure path search. The exploitation of this issue can enable an attacker to increase their privileges.

Recommendations: For Ivanti Workspace Control versions 10.18.0.0 and below, update to a version above 10.18.0.0 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.