CVE-2024-8012

Name of the Vulnerable Software and Affected Versions: Ivanti Workspace Control versions 10.18.0.0 and below

Description: The issue is related to an authentication bypass weakness in the message broker service, allowing a local authenticated attacker to escalate their privileges. This is due to the use of dangerous methods or functions in the service. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations: For Ivanti Workspace Control versions 10.18.0.0 and below, update to a version above 10.18.0.0 to resolve the issue. At the moment, there is no information about additional mitigation measures.