CVE-2024-44105

Name of the Vulnerable Software and Affected Versions: Ivanti Workspace Control versions 10.18.0.0 and below

Description: The issue is related to the transmission of sensitive information in cleartext, allowing a local authenticated attacker to obtain operating system credentials. This can be exploited to gain unauthorized access to the system.

Recommendations: For Ivanti Workspace Control versions 10.18.0.0 and below, update to a version above 10.18.0.0 to resolve the issue. As a temporary workaround, consider restricting access to the management console to minimize the risk of exploitation.