ivanti
500 tracked vulnerabilities.
CVE-2024-29824
HIGH
KEVNUCLEI
Ivanti EPM RecordGoodApp SQLi RCE
May 31, 2024
CVSS 8.8
EPSS 1.00
CVE-2024-29823
HIGH
Ivanti EPM <2022 SU5 - SQL Injection
May 31, 2024
CVSS 8.8
EPSS 1.00
CVE-2024-29822
HIGH
Ivanti EPM <2022 SU5 - SQL Injection
May 31, 2024
CVSS 8.8
EPSS 0.64
CVE-2024-22060
MEDIUM
Ivanti Neurons for ITSM - File Upload
May 31, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-22059
HIGH
Ivanti Neurons for ITSM - SQL Injection
May 31, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-22058
HIGH
Ivanti EPM <2021.1 - Buffer Overflow
May 31, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-22026
MEDIUM
EPMM <12.1.0.0 - Privilege Escalation
May 22, 2024
CVSS 6.7
EPSS 0.01
CVE-2024-29205
HIGH
Ivanti Connect/Ivanti Policy <9.x,22.x - Info Disclosure
Apr 25, 2024
CVSS 7.5
EPSS 0.02
CVE-2024-23527
HIGH
Ivanti Avalanche < 6.4.3.528 - Unauthenticated Out-of-bounds Read in WLAvalancheService
Apr 25, 2024
CVSS 7.5
EPSS 0.02
CVE-2024-29204
CRITICAL
Ivanti Avalanche <6.4.3 - Buffer Overflow
Apr 19, 2024
CVSS 9.8
EPSS 0.04
CVE-2024-27984
HIGH
Ivanti Avalanche < 6.4.3 - Authenticated Path Traversal and Denial of Service
Apr 19, 2024
CVSS 7.1
EPSS 0.02
CVE-2024-27978
MEDIUM
Ivanti Avalanche < 6.4.3 - Authenticated Denial of Service via WLAvalancheService Null Pointer Dereference
Apr 19, 2024
CVSS 6.5
EPSS 0.02
CVE-2024-27977
HIGH
Ivanti Avalanche < 6.4.3 - Authenticated Path Traversal and Arbitrary File Deletion
Apr 19, 2024
CVSS 8.1
EPSS 0.02
CVE-2024-27976
HIGH
Ivanti Avalanche < 6.4.3 - Authenticated Path Traversal and Remote Code Execution
Apr 19, 2024
CVSS 8.8
EPSS 0.03
CVE-2024-27975
HIGH
Ivanti Avalanche < 6.4.3.528 - Authenticated Remote Code Execution via Use-After-Free in WLAvalancheService
Apr 19, 2024
CVSS 8.8
EPSS 0.03
CVE-2024-25000
HIGH
Ivanti Avalanche <6.4.3 - Path Traversal
Apr 19, 2024
CVSS 8.8
EPSS 0.03
CVE-2024-24999
HIGH
Ivanti Avalanche <6.4.3 - Path Traversal
Apr 19, 2024
CVSS 8.8
EPSS 0.03
CVE-2024-24998
HIGH
Ivanti Avalanche <6.4.3 - Path Traversal
Apr 19, 2024
CVSS 8.8
EPSS 0.03
CVE-2024-24997
HIGH
Ivanti Avalanche <6.4.3 - Path Traversal
Apr 19, 2024
CVSS 8.8
EPSS 0.03
CVE-2024-24996
CRITICAL
Ivanti Avalanche <6.4.3 - Buffer Overflow
Apr 19, 2024
CVSS 9.8
EPSS 0.32
CVE-2024-24995
HIGH
Ivanti Avalanche <6.4.3 - Privilege Escalation
Apr 19, 2024
CVSS 7.5
EPSS 0.02
CVE-2024-24994
HIGH
Ivanti Avalanche <6.4.3 - Path Traversal
Apr 19, 2024
CVSS 8.8
EPSS 0.68
CVE-2024-24993
HIGH
Ivanti Avalanche <6.4.3 - Privilege Escalation
Apr 19, 2024
CVSS 7.5
EPSS 0.02
CVE-2024-24992
HIGH
Ivanti Avalanche <6.4.3 - Path Traversal
Apr 19, 2024
CVSS 8.8
EPSS 0.71
CVE-2024-24991
MEDIUM
Ivanti Avalanche < 6.4.3 - Authenticated Denial of Service via Null Pointer Dereference
Apr 19, 2024
CVSS 6.5
EPSS 0.02
Products
connect_secure 130
avalanche 117
endpoint_manager 116
policy_secure 77
endpoint_manager_mobile 28
workspace_control 22
secure_access_client 21
zero_trust_access_gateway 17
neurons_for_secure_access 15
Endpoint Manager Mobile 7
cloud_services_appliance 7
desktop_\&_server_management 6
landesk_management_suite 6
neurons_for_itsm 6
endpoint_manager_cloud_services_appliance 5
neurons_for_zero-trust_access 5
standalone_sentry 4
Endpoint Manager 3
Neurons for ITSM (Cloud) 3
Secure Access Client 3
Sentry 3
incapptic_connect 3
security_controls 3
Connect Secure 2
Neurons for ITSM (On-Premise) 2
application_control 2
automation 2
mobileiron 2
virtual_traffic_manager 2
LANDesk Management Suite 1
Quick Filters