Ivanti Secure Access Client Linux LPE before 22.7R1
CVE-2023-46810 Published on May 31, 2024
A local privilege escalation vulnerability in Ivanti Secure Access Client for Linux before 22.7R1, allows a low privileged user to execute code as root.
Weakness Type
Improper Privilege Management
The software does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
Products Associated with CVE-2023-46810
Want to know whenever a new CVE is published for Ivanti Secure Access Client? stack.watch will email you.
Affected Versions
Ivanti Secure Access Linux:- Version 22.7R1 and below 22.7R1 is affected.
- Version 22.7 and below 22.7r1 is affected.
Exploit Probability
EPSS
0.09%
Percentile
25.69%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.