Photo credit: www.csoonline.com
Credential Coercion
According to cybersecurity expert Hanley, vulnerabilities related to credential coercion could pose serious risks. These flaws may facilitate unauthorized attackers in exploiting the Ivanti EPM machine account credentials, potentially enabling NTLM relay attacks that could lead to server breaches.
Ivanti EPM is a comprehensive asset monitoring and management platform designed for businesses, capable of overseeing a range of desktop and mobile devices. The core server component is built on the .NET framework and provides various API endpoints for its operations.
Hanley identified that several unauthenticated API endpoints lacked adequate input validation, allowing for the possibility of injecting UNC absolute paths into multiple methods. Specifically, these methods—GetHashForFile, GetHashForSingleFile, GetHashForWildcard, and GetHashForWildcardRecursive—are intended to generate file hashes within designated directories.
Source
www.csoonline.com