Executive Risk Summary
"A local authenticated attacker can exploit insecure permissions in Ivanti Performance Manager to achieve local privilege escalation, potentially allowing them to gain elevated access to sensitive system resources. This vulnerability affects Ivanti Performance Manager versions prior to 2024.3 HF1, 2024.1 HF1, or 2023.3 HF1."
Operational Audit Arsenal
Target Type Executable
Target Asset Ivanti.PerformanceManager.exe
Standard Path %ProgramFiles%\Ivanti\Performance Manager
PowerShell
# 🛠️ Senior Engineer Universal Audit
# Target: Ivanti.PerformanceManager.exe (Executable)
$Targets = 'Ivanti.PerformanceManager.exe'
$SearchPaths = @("$env:windir\System32", "$env:ProgramFiles", "${env:ProgramFiles(x86)}")
Get-ChildItem -Path $SearchPaths -Include $Targets -Recurse -ErrorAction SilentlyContinue |
Select-Object FullName, @{Name="Version";Expression={$_.VersionInfo.ProductVersion}}Patch Impact Forecast
Reboot Required Likely
Moderate
Internal Work Notes
CVE-2024-11597: Ivanti Performance Manager Local Privilege Escalation Vulnerability - Apply HF1 patch to mitigate
Technical Intelligence & Operational Utilities • Delivered Weekly
Intelligence Sources
Related Ivanti Threats
Data compiled from NVD, MSRC, and CISA KEV Catalog. Intelligence synthesized via AI. Scripts provided for diagnostic purposes under MIT License.