Vulnerability Details CVE-2024-44107
DLL hijacking in the management console of Ivanti Workspace Control before version 2025.2 (10.19.0.0) allows a local authenticated attacker to escalate their privileges and achieve arbitrary code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 42.4%
CVSS Severity
CVSS v3 Score 8.8
Products affected by CVE-2024-44107
-
cpe:2.3:a:ivanti:workspace_control:-
-
cpe:2.3:a:ivanti:workspace_control:10.1.0.0
-
cpe:2.3:a:ivanti:workspace_control:10.18.30.0
-
cpe:2.3:a:ivanti:workspace_control:10.18.40.0
-
cpe:2.3:a:ivanti:workspace_control:10.2.0.0
-
cpe:2.3:a:ivanti:workspace_control:10.2.0.1
-
cpe:2.3:a:ivanti:workspace_control:10.2.500.1
-
cpe:2.3:a:ivanti:workspace_control:10.2.600.1
-
cpe:2.3:a:ivanti:workspace_control:10.2.700.1
-
cpe:2.3:a:ivanti:workspace_control:10.2.800.0
-
cpe:2.3:a:ivanti:workspace_control:10.2.900.1
-
cpe:2.3:a:ivanti:workspace_control:10.2.950.0
-
cpe:2.3:a:ivanti:workspace_control:10.3.0.0
-
cpe:2.3:a:ivanti:workspace_control:10.3.10.0
-
cpe:2.3:a:ivanti:workspace_control:10.3.110.0
-
cpe:2.3:a:ivanti:workspace_control:10.3.180.0
-
cpe:2.3:a:ivanti:workspace_control:10.3.20.0
-
cpe:2.3:a:ivanti:workspace_control:10.3.30.0
-
cpe:2.3:a:ivanti:workspace_control:10.3.40.0
-
cpe:2.3:a:ivanti:workspace_control:10.3.50.0
-
cpe:2.3:a:ivanti:workspace_control:10.3.90.0
-
cpe:2.3:a:ivanti:workspace_control:10.4.30.0
-
cpe:2.3:a:ivanti:workspace_control:10.4.40.0
-
cpe:2.3:a:ivanti:workspace_control:10.4.50.0
-
cpe:2.3:a:ivanti:workspace_control:10.6.30.0
-
cpe:2.3:a:ivanti:workspace_control:10.7.30.0