CVE-2024-29847 Deep Dive: Ivanti Endpoint Manager AgentPortal Deserialization of Untrusted Data Remote Code Execution Vulnerability – Horizon3.ai
Tags
attack-pattern: Data Software - T1592.002
Show in Graph
Common Information
Type Value
UUID 409e2630-f684-43b5-8446-0582cb509721
Fingerprint 2ee8d975cb87cca3
Analysis status DONE
Considered CTI value 0
Text language
Published Sept. 13, 2024, 2:34 p.m.
Added to db Sept. 13, 2024, 4:38 p.m.
Last updated Nov. 16, 2024, 3:14 p.m.
Headline CVE-2024-29847 Deep Dive: Ivanti Endpoint Manager AgentPortal Deserialization of Untrusted Data Remote Code Execution Vulnerability
Title CVE-2024-29847 Deep Dive: Ivanti Endpoint Manager AgentPortal Deserialization of Untrusted Data Remote Code Execution Vulnerability – Horizon3.ai
Detected Hints/Tags/Attributes 20/1/8
Source URLs
Redirection Url
Details Source https://www.horizon3.ai/attack-research/attack-blogs/cve-2024-29847-deep-dive-ivanti-endpoint-manager-agentportal-deserialization-of-untrusted-data-remote-code-execution-vulnerability/
URL Provider
Details Provider Source level domain
Details horizon3.ai www.horizon3.ai
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 316 Horizon3.ai https://www.horizon3.ai/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 53 
cve-2024-29847
Details Domain 136 
horizon3.ai
Details File 155 
horizon3.ai
Details File 3 
c:\program files\landesk\managementsuite\agentportal.exe
Details File 6 
agentportal.exe
Details File 76 
ping.exe
Details File 19 
tracert.exe
Details Windows Registry Key 3 
HKEY_LOCAL_MACHINE\SOFTWARE\LANDesk\SharedComponents\LANDeskAgentPortal