CVE-2019-16382

EUVD-2019-7132

19.03.2020, 17:15

An issue was discovered in Ivanti Workspace Control 10.3.110.0. One is able to bypass Ivanti's FileGuard folder protection by renaming the WMTemp work folder used by PowerGrid. A malicious PowerGrid XML file can then be created, after which the folder is renamed back to its original value. Also, CVE-2018-15591 exploitation can consequently be achieved by using PowerGrid with the /SEE parameter to execute the arbitrary command specified in the XML file.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	9.8 CRITICAL	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 90%

Affected Products (NVD)

Vendor	Product	Version
ivanti	workspace_control	10.3.110.0

𝑥

= Vulnerable software versions

References

https://forums.ivanti.com/s/article/Security-Alert-Ivanti-Workspace-Control-September-2019

https://twitter.com/jmoosdijk

https://forums.ivanti.com/s/article/Security-Alert-Ivanti-Workspace-Control-September-2019

https://twitter.com/jmoosdijk