ZDI-26-308: Ivanti Endpoint Manager RemoteControlAuth Exposed Dangerous Method Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Ivanti Endpoint Manager. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The ZDI has assigned a CVSS rating of 4.9. The following CVEs are assigned: CVE-2026-8109.

Source link

What's Hot

SSA-921111 V1.1 (Last Update: 2026-05-13): Two File Parsing Vulnerabilities in Solid Edge Before Version SE226 Update 5

At Least We Know the Washington Post Isn’t Buying Views

aria2c Improper Certificate Validation – Research Advisory

SSA-921111 V1.1 (Last Update: 2026-05-13): Two File Parsing Vulnerabilities in Solid Edge Before Version SE226 Update 5

aria2c Improper Certificate Validation – Research Advisory

PSIRT | FortiGuard Labs

Catchy & Intriguing

Defending Canada’s Digital Frontier: Combating Phishing, Social Engineering, Ransomware, and Malware

IP Address Investigations and Local OSINT

Pico 4 Review: Should You Actually Buy One Instead Of Quest 2?

A Review of the Venus Optics Argus 18mm f/0.95 MFT APO Lens

DJI Avata Review: Immersive FPV Flying For Drone Enthusiasts

Most Popular

Catchy & Intriguing

Defending Canada’s Digital Frontier: Combating Phishing, Social Engineering, Ransomware, and Malware

IP Address Investigations and Local OSINT

Our Picks

SSA-921111 V1.1 (Last Update: 2026-05-13): Two File Parsing Vulnerabilities in Solid Edge Before Version SE226 Update 5

At Least We Know the Washington Post Isn’t Buying Views

aria2c Improper Certificate Validation – Research Advisory

Subscribe to Updates

What's Hot

ZDI-26-308: Ivanti Endpoint Manager RemoteControlAuth Exposed Dangerous Method Information Disclosure Vulnerability

Related Posts

Subscribe to Updates