Ivanti
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in any Ivanti product.
RSS Feeds for Ivanti security vulnerabilities
Create a CVE RSS feed including security vulnerabilities found in Ivanti products with stack.watch. Just hit watch, then grab your custom RSS feed url.
Products by Ivanti Sorted by Most Security Vulnerabilities since 2018
Known Exploited Ivanti Vulnerabilities
The following Ivanti vulnerabilities have recently been marked by CISA as Known to be Exploited by threat actors.
| Title | Description | Added |
|---|---|---|
| Ivanti Endpoint Manager Mobile (EPMM) Improper Input Validation Vulnerability |
Ivanti Endpoint Manager Mobile (EPMM) contains an improper input validation vulnerability that allows a remotely authenticated user with administrative access to achieve remote code execution. CVE-2026-6973 |
May 7, 2026 |
| Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability |
Ivanti Endpoint Manager Mobile (EPMM) contains a code injection vulnerability that could allow attackers to achieve unauthenticated remote code execution. CVE-2026-1340 Exploit Probability: 69.7% |
April 8, 2026 |
| Ivanti Endpoint Manager (EPM) Authentication Bypass Vulnerability |
Ivanti Endpoint Manager (EPM) contains an authentication bypass using an alternate path or channel vulnerability that could allow a remote unauthenticated attacker to leak specific stored credential data. CVE-2026-1603 Exploit Probability: 55.9% |
March 9, 2026 |
| Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability |
Ivanti Endpoint Manager Mobile (EPMM) contains a code injection vulnerability that could allow attackers to achieve unauthenticated remote code execution. CVE-2026-1281 Exploit Probability: 81.6% |
January 29, 2026 |
| Ivanti Endpoint Manager Mobile (EPMM) Authentication Bypass Vulnerability |
Ivanti Endpoint Manager Mobile (EPMM) contains an authentication bypass vulnerability in the API component that allows an attacker to access protected resources without proper credentials via crafted API requests. This vulnerability results from an insecure implementation of the Spring Framework open-source library. CVE-2025-4427 Exploit Probability: 91.3% |
May 19, 2025 |
| Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability |
Ivanti Endpoint Manager Mobile (EPMM) contains a code injection vulnerability in the API component that allows an authenticated attacker to remotely execute arbitrary code via crafted API requests. This vulnerability results from an insecure implementation of the Hibernate Validator open-source library. CVE-2025-4428 Exploit Probability: 41.0% |
May 19, 2025 |
| Ivanti Connect Secure, Policy Secure and ZTA Gateways Stack-Based Buffer Overflow Vulnerability |
Ivanti Connect Secure, Policy Secure and ZTA Gateways contains a stack-based buffer overflow vulnerability that allows a remote unauthenticated attacker to achieve remote code execution. CVE-2025-22457 Exploit Probability: 55.9% |
April 4, 2025 |
| Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability |
Ivanti Endpoint Manager (EPM) contains an absolute path traversal vulnerability that allows a remote unauthenticated attacker to leak sensitive information. CVE-2024-13159 Exploit Probability: 94.0% |
March 10, 2025 |
| Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability |
Ivanti Endpoint Manager (EPM) contains an absolute path traversal vulnerability that allows a remote unauthenticated attacker to leak sensitive information. CVE-2024-13160 Exploit Probability: 93.8% |
March 10, 2025 |
| Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability |
Ivanti Endpoint Manager (EPM) contains an absolute path traversal vulnerability that allows a remote unauthenticated attacker to leak sensitive information. CVE-2024-13161 Exploit Probability: 91.8% |
March 10, 2025 |
| Ivanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerability |
Ivanti Connect Secure, Policy Secure, and ZTA Gateways contain a stack-based buffer overflow which can lead to unauthenticated remote code execution. CVE-2025-0282 Exploit Probability: 94.1% |
January 8, 2025 |
| Ivanti Cloud Services Appliance (CSA) OS Command Injection Vulnerability |
Ivanti Cloud Services Appliance (CSA) contains an OS command injection vulnerability in the administrative console which can allow an authenticated attacker with application admin privileges to pass commands to the underlying OS. CVE-2024-9380 Exploit Probability: 86.9% |
October 9, 2024 |
| Ivanti Cloud Services Appliance (CSA) SQL Injection Vulnerability |
Ivanti Cloud Services Appliance (CSA) contains a SQL injection vulnerability in the admin web console in versions prior to 5.0.2, which can allow a remote attacker authenticated as administrator to run arbitrary SQL statements. CVE-2024-9379 Exploit Probability: 79.3% |
October 9, 2024 |
| Ivanti Endpoint Manager (EPM) SQL Injection Vulnerability |
Ivanti Endpoint Manager (EPM) contains a SQL injection vulnerability in Core server that allows an unauthenticated attacker within the same network to execute arbitrary code. CVE-2024-29824 Exploit Probability: 94.0% |
October 2, 2024 |
| Ivanti Virtual Traffic Manager Authentication Bypass Vulnerability |
Ivanti Virtual Traffic Manager contains an authentication bypass vulnerability that allows a remote, unauthenticated attacker to create a chosen administrator account. CVE-2024-7593 Exploit Probability: 94.4% |
September 24, 2024 |
| Ivanti Cloud Services Appliance (CSA) Path Traversal Vulnerability |
Ivanti Cloud Services Appliance (CSA) contains a path traversal vulnerability that could allow a remote, unauthenticated attacker to access restricted functionality. If CVE-2024-8963 is used in conjunction with CVE-2024-8190, an attacker could bypass admin authentication and execute arbitrary commands on the appliance. CVE-2024-8963 Exploit Probability: 94.2% |
September 19, 2024 |
| Ivanti Cloud Services Appliance OS Command Injection Vulnerability |
Ivanti Cloud Services Appliance (CSA) contains an OS command injection vulnerability in the administrative console which can allow an authenticated attacker with application admin privileges to pass commands to the underlying OS. CVE-2024-8190 Exploit Probability: 91.9% |
September 13, 2024 |
| Ivanti Endpoint Manager Cloud Service Appliance (EPM CSA) Code Injection Vulnerability |
Ivanti Endpoint Manager Cloud Service Appliance (EPM CSA) contains a code injection vulnerability that allows an unauthenticated user to execute malicious code with limited permissions (nobody). CVE-2021-44529 Exploit Probability: 94.5% |
March 25, 2024 |
| Ivanti Connect Secure, Policy Secure, and Neurons Server-Side Request Forgery (SSRF) Vulnerability |
Ivanti Connect Secure (ICS, formerly known as Pulse Connect Secure), Ivanti Policy Secure, and Ivanti Neurons contain a server-side request forgery (SSRF) vulnerability in the SAML component that allows an attacker to access certain restricted resources without authentication. CVE-2024-21893 Exploit Probability: 94.3% |
January 31, 2024 |
| Ivanti Endpoint Manager Mobile (EPMM) and MobileIron Core Authentication Bypass Vulnerability |
Ivanti Endpoint Manager Mobile (EPMM) and MobileIron Core contain an authentication bypass vulnerability that allows unauthorized users to access restricted functionality or resources of the application. CVE-2023-35082 Exploit Probability: 94.4% |
January 18, 2024 |
Of the known exploited vulnerabilities above, 15 are in the top 1%, or the 99th percentile of the EPSS exploit probability rankings. 4 known exploited Ivanti vulnerabilities are in the top 5% (95th percentile or greater) of the EPSS exploit probability rankings.
Top 10 Riskiest Ivanti Vulnerabilities
Based on the current exploit probability, these Ivanti vulnerabilities are on CISA's Known Exploited vulnerabilities list (KEV) and are ranked by the current EPSS exploit probability.
| Rank | CVE | EPSS | Vulnerability |
|---|---|---|---|
| 1 | CVE-2021-44529 | 94.5% | Ivanti Endpoint Manager Cloud Service Appliance (EPM CSA) Code Injection Vulnerability |
| 2 | CVE-2023-35078 | 94.4% | Ivanti Endpoint Manager Mobile Authentication Bypass Vulnerability |
| 3 | CVE-2024-7593 | 94.4% | Ivanti Virtual Traffic Manager Authentication Bypass Vulnerability |
| 4 | CVE-2023-38035 | 94.4% | Ivanti Sentry Authentication Bypass Vulnerability |
| 5 | CVE-2024-21887 | 94.4% | Ivanti Connect Secure and Policy Secure Command Injection Vulnerability |
| 6 | CVE-2023-35082 | 94.4% | Ivanti Endpoint Manager Mobile (EPMM) and MobileIron Core Authentication Bypass Vulnerability |
| 7 | CVE-2020-15505 | 94.4% | MobileIron Core, Connector, Sentry, and RDM Remote Code Execution Vulnerability |
| 8 | CVE-2023-46805 | 94.4% | Ivanti Connect Secure and Policy Secure Authentication Bypass Vulnerability |
| 9 | CVE-2024-21893 | 94.3% | Ivanti Connect Secure, Policy Secure, and Neurons Server-Side Request Forgery (SSRF) Vulnerability |
| 10 | CVE-2024-8963 | 94.2% | Ivanti Cloud Services Appliance (CSA) Path Traversal Vulnerability |
By the Year
In 2026 there have been 21 vulnerabilities in Ivanti with an average score of 7.7 out of ten. Last year, in 2025 Ivanti had 89 security vulnerabilities published. Right now, Ivanti is on track to have less security vulnerabilities in 2026 than it did last year. However, the average CVE base score of the vulnerabilities in 2026 is greater by 0.78.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 21 | 7.74 |
| 2025 | 89 | 6.96 |
| 2024 | 177 | 7.64 |
| 2023 | 60 | 8.61 |
| 2022 | 14 | 7.11 |
| 2021 | 27 | 8.22 |
| 2020 | 27 | 7.60 |
| 2019 | 28 | 7.78 |
| 2018 | 9 | 7.15 |
It may take a day or so for new Ivanti vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Ivanti Security Vulnerabilities
| CVE | Date | Vulnerability | Products |
|---|---|---|---|
| CVE-2026-9614 | Jun 01, 2026 |
Improper Access Control: Ivanti Neurons for ITSMAn Improper Access Control vulnerability in Ivanti Neurons for ITSM (cloud and on-premises) allows a remote authenticated attacker to gain administrative access. |
Neurons For Itsm
|
| CVE-2026-8992 | May 22, 2026 |
Ivanti Secure Access Client pre-22.8R6 certificate validation flaw (CVE-2026-8992)An improper certificate validation vulnerability in Ivanti Secure Access Client before 22.8R6 allows a remote unauthenticated attacker to execute arbitrary code. |
Secure Access Client
|
| CVE-2026-8111 | May 12, 2026 |
SQLi in Ivanti Endpoint Manager web console enables RCESQL injection in the web console of Ivanti Endpoint Manager before version 2024 SU6 allows a remote authenticated attacker to achieve remote code execution. |
Endpoint Manager
|
| CVE-2026-8110 | May 12, 2026 |
Perms issue in Ivanti Endpoint Manager agent allows local privilege escalationIncorrect permissions assignment in the agent of Ivanti Endpoint Manager before version 2024 SU6 allows a local authenticated attacker to escalate their privileges. |
Endpoint Manager
|
| CVE-2026-8109 | May 12, 2026 |
Exposed method in Ivanti Endpoint Mgmt Core Server leaks credentialsAn exposed dangerous method on the Core Server of Ivanti Endpoint Manager before version 2024 SU6 allows a remote authenticated attacker to leak access credentials. |
Endpoint Manager
|
| CVE-2026-8051 | May 12, 2026 |
CVE-2026-8051: OS Cmd Injection in Ivanti Virtual Traffic Manager <22.9r4OS command injection in Ivanti Virtual Traffic Manager before version 22.9r4 allows a remote authenticated attacker with admin privileges to achieve remote code execution. |
|
| CVE-2026-7432 | May 12, 2026 |
Race Condition in Ivanti Secure Access Client (<22.8R6) Privilege EscalationA race condition in Ivanti Secure Access Client before 22.8R6 allows a locally authenticated user to escalate privileges to SYSTEM |
Secure Access Client
|
| CVE-2026-7431 | May 12, 2026 |
Ivanti Secure Access Client <22.8R6 -- LGC via Shared MemoryAn incorrect permission assignment for critical resource of Ivanti Secure Access Client before 22.8R6 allows a local authenticated user to read or modify sensitive log data via write access to a shared memory section. |
Secure Access Client
|
| CVE-2026-8043 | May 12, 2026 |
External File Name Control in Ivanti Xtraction <2026.2: Authenticated R/WExternal control of a file name in Ivanti Xtraction before version 2026.2 allows a remote authenticated attacker to read sensitive files and write arbitrary HTML files to a web directory, leading to information disclosure and possible client-side attacks. |
|
| CVE-2026-5787 | May 07, 2026 |
Ivanti EPMM <12.8.0.1 Improper Cert Validation (Unauth Remote Hijack)An Improper Certificate Validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remote unauthenticated attacker to impersonate registered Sentry hosts and obtain valid CA-signed client certificates. |
Endpoint Manager Mobile
|
| CVE-2026-5788 | May 07, 2026 |
Ivanti EPMM <12.6.1.1/12.7.0.1/12.8.0.1 Remote Improper Access to MethodsAn Improper Access Control in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remote unauthenticated attacker to invoke arbitrary methods. |
Endpoint Manager Mobile
|
| CVE-2026-7821 | May 07, 2026 |
Ivanti EPMM <12.6.1.1 Certificate Validation Flaw; Remote Auth AttackImproper certificate validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remote unauthenticated attacker to enroll a device belonging to a restricted set of unenrolled devices, leading to information disclosure about EPMM appliance and impacting on the integrity of the newly enrolled device identity. |
Endpoint Manager Mobile
|
| CVE-2026-6973 | May 07, 2026 |
Remote Code Execution via Improper Input Validation in Ivanti EPMM 12.8An Improper Input Validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remotely authenticated user with administrative access to achieve remote code execution. |
Endpoint Manager Mobile
|
| CVE-2026-5786 | May 07, 2026 |
Ivanti EPMM Improper Access Control (pre 12.6.1.1/12.7.0.1/12.8.0.1)An Improper Access Control vulnerability in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remote authenticated attacker to gain administrative access. |
Endpoint Manager Mobile
|
| CVE-2026-4914 | Apr 14, 2026 |
Ivanti N-ITSM <2025.4: Stored XSS (limited info via auth)Stored XSS in Ivanti N-ITSM before version 2025.4 allows a remote authenticated attacker to obtain limited information from other user sessions. User interaction is required. |
Neurons For Itsm
|
| CVE-2026-4913 | Apr 14, 2026 |
Ivanti N-ITSM Imp. PS of Alt Path before 2025.4: Auth Retains Access w/ Disabled AccImproper protection of an alternate path in Ivanti N-ITSM before version 2025.4 allows a remote authenticated attacker to retain access when their account has been disabled. |
Neurons For Itsm
|
| CVE-2026-3483 | Mar 10, 2026 |
Ivanti DSM <=2026.1.1 Local Auth Escalation via Exposed Dangerous MethodAn exposed dangerous method in Ivanti DSM before version 2026.1.1 allows a local authenticated attacker to escalate their privileges. |
|
| CVE-2026-1603 | Feb 10, 2026 |
Auth Bypass in Ivanti Endpoint Manager leaks credentialsAn authentication bypass in Ivanti Endpoint Manager before version 2024 SU5 allows a remote unauthenticated attacker to leak specific stored credential data. |
Endpoint Manager
|
| CVE-2026-1602 | Feb 10, 2026 |
SQLi in Ivanti Endpoint Manager (2024 SU5) Enables Remote Auth'd ReadSQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database. |
Endpoint Manager
|
| CVE-2026-1340 | Jan 29, 2026 |
CVE-2026-1340: unauth RCE via code injection in Ivanti Endpoint Manager MobileA code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote code execution. |
Endpoint Manager Mobile
|
| CVE-2026-1281 | Jan 29, 2026 |
CVE-2026-1281: Code Injection in Ivanti Endpoint Manager Mobile (Unauth RCE)A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote code execution. |
Endpoint Manager Mobile
|
| CVE-2025-13662 | Dec 09, 2025 |
Ivanti Endpoint Manager: Improper Verification of Patch Management SignaturesImproper verification of cryptographic signatures in the patch management component of Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote unauthenticated attacker to execute arbitrary code. User Interaction is required. |
Endpoint Manager
|
| CVE-2025-13661 | Dec 09, 2025 |
Path traversal in Ivanti Endpoint Manager allows RTA to write filesPath traversal in Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote authenticated attacker to write arbitrary files outside of the intended directory. User interaction is required. |
Endpoint Manager
|
| CVE-2025-13659 | Dec 09, 2025 |
Remote File Write in Ivanti Endpoint Manager (CVE-2025-13659)Improper control of dynamically managed code resources in Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote, unauthenticated attacker to write arbitrary files on the server, potentially leading to remote code execution. User interaction is required. |
Endpoint Manager
|
| CVE-2025-10573 | Dec 09, 2025 |
Stored XSS in Ivanti Endpoint Manager (prior to 2024 SU4 SR1)Stored XSS in Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote unauthenticated attacker to execute arbitrary JavaScript in the context of an administrator session. User interaction is required. |
Endpoint Manager
|
| CVE-2025-10918 | Nov 11, 2025 |
Ivanti Endpoint Manager Agent Perms Flaw Allows Arbitrary File WriteInsecure default permissions in the agent of Ivanti Endpoint Manager before version 2024 SU4 allows a local authenticated attacker to write arbitrary files anywhere on disk |
Endpoint Manager
|
| CVE-2025-10986 | Oct 14, 2025 |
Path Traversal: Ivanti EPMM <12.6.0.2 Admin Path Write VulnerabilityPath traversal in the admin panel of Ivanti EPMM before version 12.6.0.2, 12.5.0.4, and 12.4.0.4 allows a remote authenticated attacker with admin privileges to write data in unintended locations on disk. |
Endpoint Manager Mobile
|
| CVE-2025-10985 | Oct 14, 2025 |
OS Command Injection in Ivanti EPMM <=12.6.0.2 Admin PanelOS command injection in the admin panel of Ivanti EPMM before version 12.6.0.2, 12.5.0.4, and 12.4.0.4 allows a remote authenticated attacker with admin privileges to achieve remote code execution. |
Endpoint Manager Mobile
|
| CVE-2025-10243 | Oct 14, 2025 |
Ivanti EPMM OS Command Injection (Admin Panel) <12.6.0.2,12.5.0.4,12.4.0.4OS command injection in the admin panel of Ivanti EPMM before version 12.6.0.2, 12.5.0.4, and 12.4.0.4 allows a remote authenticated attacker with admin privileges to achieve remote code execution. |
Endpoint Manager Mobile
|
| CVE-2025-10242 | Oct 14, 2025 |
Remote CMD Injection in Ivanti EPMM Admin (12.6.0.2)OS command injection in the admin panel of Ivanti EPMM before version 12.6.0.2, 12.5.0.4, and 12.4.0.4 allows a remote authenticated attacker with admin privileges to achieve remote code execution. |
Endpoint Manager Mobile
|
| CVE-2025-62384 | Oct 13, 2025 |
SQLi in Ivanti Endpoint Manager Remote Auth Data LeakSQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database. |
Endpoint Manager
|
| CVE-2025-62386 | Oct 13, 2025 |
SQL Injection in Ivanti Endpoint Manager allows data exfiltrationSQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database. |
Endpoint Manager
|
| CVE-2025-62383 | Oct 13, 2025 |
SQLi in Ivanti Endpoint Manager Enables Data ExfiltrationSQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database. |
Endpoint Manager
|
| CVE-2025-62391 | Oct 13, 2025 |
SQLi in IVANTI Endpoint Manager allows remote auth attacker read DBSQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database. |
Endpoint Manager
|
| CVE-2025-62385 | Oct 13, 2025 |
Remote Authenticated SQL Injection in Ivanti Endpoint ManagerSQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database. |
Endpoint Manager
|
| CVE-2025-62387 | Oct 13, 2025 |
SQLi in Ivanti Endpoint Manager Allows Authenticated Data ReadSQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database. |
Endpoint Manager
|
| CVE-2025-62388 | Oct 13, 2025 |
SQLi in Ivanti Endpoint Manager allows remote authenticated data readSQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database. |
Endpoint Manager
|
| CVE-2025-62389 | Oct 13, 2025 |
Ivanti Endpoint Manager SQLi: Remote Auth Att Read DB DataSQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database. |
Endpoint Manager
|
| CVE-2025-62390 | Oct 13, 2025 |
CVE-2025-62390: SQLi in Ivanti Endpoint Manager reading DB dataSQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database. |
Endpoint Manager
|
| CVE-2025-62392 | Oct 13, 2025 |
SQL injection in Ivanti Endpoint Manager allows remote authenticated data exfiltrationSQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database. |
Endpoint Manager
|
| CVE-2025-11623 | Oct 13, 2025 |
SQLi in Ivanti Endpoint Manager Web UI allows Authenticated Data ReadSQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database. |
Endpoint Manager
|
| CVE-2025-9713 | Oct 13, 2025 |
CVE-2025-9713: Path Traversal/Remote Code Execution in Ivanti Endpoint ManagerPath traversal in Ivanti Endpoint Manager before version 2024 SU4 allows a remote unauthenticated attacker to achieve remote code execution. User interaction is required. |
Endpoint Manager
|
| CVE-2025-11622 | Oct 13, 2025 |
Ivanti Endpoint Manager Insecure Deserialization Enables Local Auth EscalationInsecure deserialization in Ivanti Endpoint Manager before version 2024 SU4 allows a local authenticated attacker to escalate their privileges. |
Endpoint Manager
|
| CVE-2025-8297 | Aug 12, 2025 |
IVANTI AVALANCHE RCE via Incomplete Config Restriction before v6.4.8.8008Incomplete restriction of configuration in Ivanti Avalanche before version 6.4.8.8008 allows a remote authenticated attacker with admin privileges to achieve remote code execution |
Avalanche
|
| CVE-2025-8296 | Aug 12, 2025 |
SQL Injection RCE in Ivanti Avalanche v<6.4.8.8008SQL injection in Ivanti Avalanche before version 6.4.8.8008 allows a remote authenticated attacker with admin privileges to execute arbitrary SQL queries. In certain conditions, this can also lead to remote code execution |
Avalanche
|
| CVE-2025-5468 | Aug 12, 2025 |
CVE-2025-5468 Local Auth File Read via Symlink in Ivanti Connect Secure <=22.8Improper handling of symbolic links in Ivanti Connect Secure before version 22.7R2.8 or 22.8R2, Ivanti Policy Secure before 22.7R1.5, Ivanti ZTA Gateway before 22.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 (Fix deployed on 02-Aug-2025) allows a local authenticated attacker to read arbitrary files on disk. |
Connect Secure
|
| CVE-2025-5466 | Aug 12, 2025 |
XEE-induced DoS in Ivanti Connect Secure pre-22.7R2.8 & related productsXEE in Ivanti Connect Secure before 22.7R2.8 or 22.8R2, Ivanti Policy Secure before 22.7R1.5, Ivanti ZTA Gateway before 22.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 (Fix deployed on 02-Aug-2025) allows a remote authenticated attacker with admin privileges to trigger a denial of service |
Connect Secure
|
| CVE-2025-5462 | Aug 12, 2025 |
Ivanti Connect Secure DoS via Heap Buffer Overflow before 22.8R2A heap-based buffer overflow in Ivanti Connect Secure before 22.7R2.8 or 22.8R2, Ivanti Policy Secure before 22.7R1.5, Ivanti ZTA Gateway before 22.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 (Fix deployed on 02-Aug-2025) allows a remote unauthenticated attacker to trigger a denial of service. |
Connect Secure
|
| CVE-2025-5456 | Aug 12, 2025 |
Ivanti Connect Secure & Policy Secure Buffer Over-Read DoS (CVE-2025-5456)A buffer over-read vulnerability in Ivanti Connect Secure before 22.7R2.8 or 22.8R2, Ivanti Policy Secure before 22.7R1.5, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 (Fix deployed on 02-Aug-2025) allows a remote unauthenticated attacker to trigger a denial of service. CWE-125 |
Connect Secure
|
| CVE-2024-38648 | Jul 12, 2025 |
Ivanti DSM Hardcoded Secret <2024.2 Enables Credential DecryptionA hardcoded secret in Ivanti DSM before 2024.2 allows an authenticated attacker on an adjacent network to decrypt sensitive data including user credentials. |
Desktop Server Management
|