Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-13161 PoC — Ivanti EPM 安全漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2024/CVE-2024-13161.yaml
Associated Vulnerability
Title:Ivanti EPM 安全漏洞 (CVE-2024-13161)
Description:Ivanti EPM是美国Ivanti公司的一个一站式管理用户配置文件和所有客户端设备的软件。 Ivanti EPM存在安全漏洞,该漏洞源于包含一个绝对路径遍历。允许远程未经身份验证的攻击者利用该漏洞可以泄露敏感信息。
Description
A vulnerability in Ivanti Endpoint Manager (EPM) allows an unauthenticated attacker to coerce the EPM machine account credential via the GetHashForSingleFile endpoint. The vulnerability exists due to improper input validation in the wildcard parameter, allowing an attacker to specify a remote UNC path that triggers NTLM authentication.
File Snapshot

 id: CVE-2024-13161

info:
  name: Ivanti EPM - Credential Coercion Vulnerability in GetHashForSingle

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.