Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / ivanti

ivanti

496 tracked vulnerabilities.

CVE-2024-8496 HIGH

Ivanti Workspace Control <10.18.40.0 - Privilege Escalation

CVE-2024-11598 HIGH

Ivanti Application Control < 2023.3 - Incorrect Default Permissions

CVE-2024-11597 HIGH

Ivanti Performance Manager < 2023.3 - Authenticated Local Privilege Escalation via Insecure Permissions

CVE-2024-10251 HIGH

Ivanti Security Controls <2024.4.1 - Privilege Escalation

CVE-2024-9844 HIGH

Ivanti Connect Secure <22.7R2.4 - Auth Bypass

CVE-2024-8540 HIGH

Ivanti Sentry <10.1.0 - Privilege Escalation

CVE-2024-7572 HIGH

Ivanti Desktop and Server Management 2024.2-2024.3.5740 - Authenticated Arbitrary File Deletion

CVE-2024-11773 CRITICAL

Ivanti Cloud Services Appliance < 5.0.3 - Authenticated SQL Injection in Admin Web Console

CVE-2024-11772 CRITICAL

Ivanti CSA <5.0.3 - Command Injection

CVE-2024-11639 CRITICAL

Ivanti Cloud Services Appliance < 5.0.3 - Unauthenticated Authentication Bypass in Admin Web Console

CVE-2024-11634 CRITICAL

Ivanti Connect/Ivanti Policy <22.7R2.3/<22.7R1.2 - Command Injection

CVE-2024-11633 CRITICAL

Ivanti Connect Secure <22.7R2.4 - Command Injection

CVE-2024-10256 HIGH

Ivanti Patch SDK <9.7.703 - Privilege Escalation

CVE-2024-39712 CRITICAL

Ivanti Connect Secure < 22.7 and Policy Secure < 22.7 - Authenticated Remote Code Execution via Argument Injection

CVE-2024-39711 CRITICAL

Ivanti Connect Secure < 22.7R2.1, 9.1R18.7 & Policy Secure < 22.7R1.1 - Authenticated RCE via Argument Injection

CVE-2024-39710 CRITICAL

Ivanti Connect Secure < 22.7R2.1 / 9.1R18.7 & Policy Secure < 22.7R1.1 - Authenticated RCE via Argument Injection

CVE-2024-39709 HIGH

Ivanti Connect Secure and Policy Secure - Local Privilege Escalation via Incorrect File Permissions

CVE-2024-38656 CRITICAL

Ivanti Connect Secure <22.7R2.2,9.1R18.9 - Command Injection

CVE-2024-38655 HIGH

Ivanti Connect/Ivanti Policy <22.7R2.1-9.1R18.9 - Command Injection

CVE-2024-38654 MEDIUM

Ivanti Secure Access Client <22.7R3 - DoS

CVE-2024-38649 HIGH

Ivanti Connect Secure <22.7R2.1 - DoS

CVE-2024-37400 HIGH

Ivanti Connect Secure < 22.7R2.3 - Unauthenticated Denial of Service via Out-of-bounds Read

CVE-2024-37398 HIGH

Ivanti Secure Access Client <22.7R4 - Privilege Escalation

CVE-2024-37376 HIGH

Ivanti Endpoint Manager < 2022 SU6 November Security Update - Authenticated SQL Injection

CVE-2024-34787 HIGH

Ivanti Endpoint Manager < 2022 SU6 November Security Update - Unauthenticated Path Traversal

Previous Page 6 of 20 Next

Products

connect_secure 130 avalanche 117 endpoint_manager 116 policy_secure 77 endpoint_manager_mobile 28 workspace_control 22 secure_access_client 20 zero_trust_access_gateway 17 neurons_for_secure_access 15 cloud_services_appliance 7 Endpoint Manager Mobile 6 desktop_\&_server_management 6 landesk_management_suite 6 neurons_for_itsm 6 endpoint_manager_cloud_services_appliance 5 neurons_for_zero-trust_access 5 Endpoint Manager 3 Secure Access Client 3 incapptic_connect 3 security_controls 3 Connect Secure 2 Neurons for ITSM (Cloud) 2 Neurons for ITSM (On-Premise) 2 application_control 2 automation 2 mobileiron 2 standalone_sentry 2 virtual_traffic_manager 2 LANDesk Management Suite 1 Policy Secure 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy