cbcvebase.
CVE-2022-27773
published 2022-12-05

CVE-2022-27773: A privilege escalation vulnerability is identified in Ivanti EPM (LANDesk Management Suite) that allows a user to execute commands with elevated privileges.

PriorityP357critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
2.58%
83.3th percentile
A privilege escalation vulnerability is identified in Ivanti EPM (LANDesk Management Suite) that allows a user to execute commands with elevated privileges.

Affected

3 ranges
VendorProductVersion rangeFixed in
ivantiendpoint_manager< 2021.12021.1
ivantiendpoint_manager
ivantiendpoint_manager

Detection & IOCsextracted from sources · hover to see the quote

  • Privilege escalation vulnerability in Ivanti EPM (LANDesk Management Suite) allowing execution of commands with elevated privileges — monitor for unexpected privileged process execution originating from EPM/LANDesk agent processes
  • ·The provided sources contain only high-level advisory text with no technical details, IOCs, exploit code, or operational indicators. No hashes, domains, IPs, paths, commands, or signatures were present in the source material.
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.