ivanti

496 tracked vulnerabilities.

CVE-2023-41474 MEDIUM
Ivanti Avalanche <6.3.4.153 - Path Traversal
Jan 25, 2024
CVSS 6.5
EPSS 0.75
CVE-2023-46805 HIGH KEVNUCLEI
Ivanti Connect Secure Unauthenticated Remote Code Execution
Jan 12, 2024
CVSS 8.2
EPSS 0.94
CVE-2023-39336 HIGH
Ivanti Endpoint Manager < 2022 SU 5 - Unauthenticated SQL Injection
Jan 09, 2024
CVSS 8.8
EPSS 0.01
CVE-2023-46804 HIGH
Mobile Device Server - Memory Corruption
Dec 19, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-46803 HIGH
Mobile Device Server - Memory Corruption
Dec 19, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-46266 CRITICAL
Ivanti Avalanche <= 6.4.1 - Information Disclosure or DoS
Dec 19, 2023
CVSS 9.1
EPSS 0.01
CVE-2023-46265 CRITICAL
Ivanti Avalanche Smart Device Server - XML External Entity Request Forgery
Dec 19, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-46264 CRITICAL
Ivanti Avalanche < 6.4.2 - Unrestricted Upload of File with Dangerous Type
Dec 19, 2023
CVSS 9.8
EPSS 0.65
CVE-2023-46263 CRITICAL
Ivanti Avalanche < 6.4.2 - Unrestricted Upload of File with Dangerous Type
Dec 19, 2023
CVSS 9.8
EPSS 0.79
CVE-2023-46262 HIGH
Ivanti Avalanche Remote Control - SSRF
Dec 19, 2023
CVSS 7.5
EPSS 0.32
CVE-2023-46261 CRITICAL
Mobile Device Server - Memory Corruption
Dec 19, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-46260 CRITICAL
Mobile Device Server - Memory Corruption
Dec 19, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-46259 CRITICAL
Mobile Device Server - Memory Corruption
Dec 19, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-46258 CRITICAL
Mobile Device Server - Memory Corruption
Dec 19, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-46257 CRITICAL
Mobile Device Server - Memory Corruption
Dec 19, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-46225 CRITICAL
Mobile Device Server - Memory Corruption
Dec 19, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-46224 CRITICAL
Mobile Device Server - Memory Corruption
Dec 19, 2023
CVSS 9.8
EPSS 0.03
CVE-2023-46223 CRITICAL
Mobile Device Server - Memory Corruption
Dec 19, 2023
CVSS 9.8
EPSS 0.03
CVE-2023-46222 CRITICAL
Mobile Device Server - Memory Corruption
Dec 19, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-46221 CRITICAL
Mobile Device Server - Memory Corruption
Dec 19, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-46220 CRITICAL
Mobile Device Server - Memory Corruption
Dec 19, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-46217 CRITICAL
Mobile Device Server - Memory Corruption/DoS
Dec 19, 2023
CVSS 9.8
EPSS 0.03
CVE-2023-46216 CRITICAL
Mobile Device Server - Memory Corruption
Dec 19, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-41727 CRITICAL
Ivanti Avalanche < 6.4.2 - Memory Corruption via Crafted Data Packets
Dec 19, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-39340 HIGH
Ivanti Connect Secure < 22.6R2 - Denial of Service
Dec 16, 2023
CVSS 7.5
EPSS 0.00
Products
connect_secure 130 avalanche 117 endpoint_manager 116 policy_secure 77 endpoint_manager_mobile 28 workspace_control 22 secure_access_client 20 zero_trust_access_gateway 17 neurons_for_secure_access 15 cloud_services_appliance 7 Endpoint Manager Mobile 6 desktop_\&_server_management 6 landesk_management_suite 6 neurons_for_itsm 6 endpoint_manager_cloud_services_appliance 5 neurons_for_zero-trust_access 5 Endpoint Manager 3 Secure Access Client 3 incapptic_connect 3 security_controls 3 Connect Secure 2 Neurons for ITSM (Cloud) 2 Neurons for ITSM (On-Premise) 2 application_control 2 automation 2 mobileiron 2 standalone_sentry 2 virtual_traffic_manager 2 LANDesk Management Suite 1 Policy Secure 1
Quick Filters
Critical CVEs With Exploits In CISA KEV