CVE-2022-27773

A privilege escalation vulnerability is identified in Ivanti EPM (LANDesk Management Suite) that allows a user to execute commands with elevated privileges.

Published: Dec 5, 2022
Updated: Apr 14, 2023
CVE: CVE-2022-27773
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-269

Affected Software
References

Software	From	Fixed in
ivanti / endpoint_manager	2021.1-su2	2021.1-su2.x
ivanti / endpoint_manager	-	2021.1
ivanti / endpoint_manager	2021.1-su1	2021.1-su1.x
ivanti / endpoint_manager	2022-su1	2022-su1.x

https://forums.ivanti.com/s/article/Security-Advisory-for-Ivanti-Endpoint-Manager-Client-CVE-2022-27773?language=en_US

Vulnerability Database

CVE-2022-27773