vuln disclosure
Ivanti Endpoint Manager AgentPortal Deserialization RCE VulnerabilityCVE-2024-29847
A deserialization vulnerability in Ivanti Endpoint Manager's AgentPortal service allows unauthenticated remote code execution. The flaw resides in the .NET remoting service handling the IAgentPortal interface, specifically the RunProgram action. Ivanti patched the issue by restricting executable paths and enforcing firewall checks.