Vulnerability Details CVE-2024-36130
An insufficient authorization vulnerability in web component of EPMM prior to 12.1.0.1 allows an unauthorized attacker within the network to execute arbitrary commands on the underlying operating system of the appliance.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.036
EPSS Ranking 87.3%
CVSS Severity
CVSS v3 Score 9.8
Products affected by CVE-2024-36130
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:-
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.10.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.10.0.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.10.0.1
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.10.0.2
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.10.0.3
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.10.0.4
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.11.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.11.0.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.11.0.1
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.11.0.2
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.12.0.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.12.0.1
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.12.0.2
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.12.0.3
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.12.0.5
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.4.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.4.0.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.4.1.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.5.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.5.0.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.6.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.6.0.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.6.0.01
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.6.0.1
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.7.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.7.0.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.8.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.8.0.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.8.1.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.8.1.1
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.8.1.2
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.9.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.9.0.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.9.0.1
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.9.1.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.9.1.1
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.9.1.2
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:12.0.0.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:12.0.0.1
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:12.0.0.2
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:12.0.0.3
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:12.0.0.4
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:12.0.0.5
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:12.1.0.0