A recent investigation by Horizon3.ai has unveiled four critical vulnerabilities in the Ivanti Endpoint Manager (EPM). These vulnerabilities, identified as CVE-2024-10811, CVE-2024-13161, CVE-2024-13160, and CVE-2024-13159, allow unauthenticated attackers to coerce machine account credentials for potential relay attacks, posing a significant risk of server compromise. Unauthenticated Attackers Can Exploit Vulnerabilities for Server Compromise The vulnerabilities stem … Continue reading Proof-of-Concept Exploit Published for Critical Ivanti EPM Flaws