CVE-2020-13772 - Ivanti Endpoint Manager
Moderate 5.3
In /ldclient/ldprov.cgi in Ivanti Endpoint Manager through 2020.1.1, an attacker is able to disclose information about the server operating system, local pathnames, and environment variables with no authentication required.
Affected software
Ivanti Endpoint Manager