ivanti

496 tracked vulnerabilities.

CVE-2024-22059 HIGH
Ivanti Neurons for ITSM - SQL Injection
May 31, 2024
CVSS 8.8
EPSS 0.04
CVE-2024-22058 HIGH
Ivanti EPM <2021.1 - Buffer Overflow
May 31, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-22026 MEDIUM
EPMM <12.1.0.0 - Privilege Escalation
May 22, 2024
CVSS 6.7
EPSS 0.00
CVE-2024-29205 HIGH
Ivanti Connect/Ivanti Policy <9.x,22.x - Info Disclosure
Apr 25, 2024
CVSS 7.5
EPSS 0.03
CVE-2024-23527 HIGH
Ivanti Avalanche < 6.4.3.528 - Unauthenticated Out-of-bounds Read in WLAvalancheService
Apr 25, 2024
CVSS 7.5
EPSS 0.02
CVE-2024-29204 CRITICAL
Ivanti Avalanche <6.4.3 - Buffer Overflow
Apr 19, 2024
CVSS 9.8
EPSS 0.12
CVE-2024-27984 HIGH
Ivanti Avalanche < 6.4.3 - Authenticated Path Traversal and Denial of Service
Apr 19, 2024
CVSS 7.1
EPSS 0.01
CVE-2024-27978 MEDIUM
Ivanti Avalanche < 6.4.3 - Authenticated Denial of Service via WLAvalancheService Null Pointer Dereference
Apr 19, 2024
CVSS 6.5
EPSS 0.02
CVE-2024-27977 HIGH
Ivanti Avalanche < 6.4.3 - Authenticated Path Traversal and Arbitrary File Deletion
Apr 19, 2024
CVSS 8.1
EPSS 0.03
CVE-2024-27976 HIGH
Ivanti Avalanche < 6.4.3 - Authenticated Path Traversal and Remote Code Execution
Apr 19, 2024
CVSS 8.8
EPSS 0.09
CVE-2024-27975 HIGH
Ivanti Avalanche < 6.4.3.528 - Authenticated Remote Code Execution via Use-After-Free in WLAvalancheService
Apr 19, 2024
CVSS 8.8
EPSS 0.05
CVE-2024-25000 HIGH
Ivanti Avalanche <6.4.3 - Path Traversal
Apr 19, 2024
CVSS 8.8
EPSS 0.09
CVE-2024-24999 HIGH
Ivanti Avalanche <6.4.3 - Path Traversal
Apr 19, 2024
CVSS 8.8
EPSS 0.09
CVE-2024-24998 HIGH
Ivanti Avalanche <6.4.3 - Path Traversal
Apr 19, 2024
CVSS 8.8
EPSS 0.05
CVE-2024-24997 HIGH
Ivanti Avalanche <6.4.3 - Path Traversal
Apr 19, 2024
CVSS 8.8
EPSS 0.07
CVE-2024-24996 CRITICAL
Ivanti Avalanche <6.4.3 - Buffer Overflow
Apr 19, 2024
CVSS 9.8
EPSS 0.31
CVE-2024-24995 HIGH
Ivanti Avalanche <6.4.3 - Privilege Escalation
Apr 19, 2024
CVSS 7.5
EPSS 0.04
CVE-2024-24994 HIGH
Ivanti Avalanche <6.4.3 - Path Traversal
Apr 19, 2024
CVSS 8.8
EPSS 0.48
CVE-2024-24993 HIGH
Ivanti Avalanche <6.4.3 - Privilege Escalation
Apr 19, 2024
CVSS 7.5
EPSS 0.02
CVE-2024-24992 HIGH
Ivanti Avalanche <6.4.3 - Path Traversal
Apr 19, 2024
CVSS 8.8
EPSS 0.62
CVE-2024-24991 MEDIUM
Ivanti Avalanche < 6.4.3 - Authenticated Denial of Service via Null Pointer Dereference
Apr 19, 2024
CVSS 6.5
EPSS 0.04
CVE-2024-23535 HIGH
Ivanti Avalanche < 6.4.3 - Authenticated Path Traversal and Remote Code Execution
Apr 19, 2024
CVSS 8.8
EPSS 0.62
CVE-2024-23534 HIGH
Ivanti Avalanche < 6.4.3 - Authenticated Remote Code Execution via Unrestricted File Upload
Apr 19, 2024
CVSS 8.8
EPSS 0.03
CVE-2024-23533 MEDIUM
Ivanti Avalanche < 6.4.3.528 - Authenticated Out-of-bounds Read in WLAvalancheService
Apr 19, 2024
CVSS 6.5
EPSS 0.02
CVE-2024-23532 HIGH
Ivanti Avalanche < 6.4.3 - Authenticated Out-of-bounds Read in WLAvalancheService
Apr 19, 2024
CVSS 7.5
EPSS 0.21
Products
connect_secure 130 avalanche 117 endpoint_manager 116 policy_secure 77 endpoint_manager_mobile 28 workspace_control 22 secure_access_client 20 zero_trust_access_gateway 17 neurons_for_secure_access 15 cloud_services_appliance 7 Endpoint Manager Mobile 6 desktop_\&_server_management 6 landesk_management_suite 6 neurons_for_itsm 6 endpoint_manager_cloud_services_appliance 5 neurons_for_zero-trust_access 5 Endpoint Manager 3 Secure Access Client 3 incapptic_connect 3 security_controls 3 Connect Secure 2 Neurons for ITSM (Cloud) 2 Neurons for ITSM (On-Premise) 2 application_control 2 automation 2 mobileiron 2 standalone_sentry 2 virtual_traffic_manager 2 LANDesk Management Suite 1 Policy Secure 1
Quick Filters
Critical CVEs With Exploits In CISA KEV