Lucene search
K

1366 matches found

NVD
NVD
added 2025/09/09 4:15 p.m.9 views

CVE-2025-55144

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

5.4CVSS0.00514EPSS
Exploits0References1
NVD
NVD
added 2025/09/09 4:15 p.m.7 views

CVE-2025-55141

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

8.8CVSS0.00855EPSS
Exploits0References1
OSV
OSV
added 2025/09/09 4:15 p.m.5 views

CVE-2025-55141

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

8.8CVSS5.9AI score0.00855EPSS
Exploits0References1
OSV
OSV
added 2025/09/09 4:15 p.m.4 views

CVE-2025-55139

SSRF in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with admin privileges to enumerate internal...

6.8CVSS5.9AI score0.00846EPSS
Exploits0References1
NVD
NVD
added 2025/09/09 4:15 p.m.8 views

CVE-2025-55139

SSRF in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with admin privileges to enumerate internal...

6.8CVSS0.00846EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/09 3:55 p.m.3 views

CVE-2025-55144

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

5.4CVSS6.3AI score0.00514EPSS
Exploits0References1
CVE
CVE
added 2025/09/09 3:55 p.m.21 views

CVE-2025-55144

CVE-2025-55144 affects Ivanti Connect Secure, Policy Secure, ZTA Gateways, and Neurons for Secure Access. The vulnerability is a missing authorization flaw that lets a remote authenticated attacker with read‑only admin privileges configure restricted settings. Affected versions: Connect Secure &l...

5.4CVSS6.3AI score0.00514EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/09/09 3:52 p.m.21 views

CVE-2025-55143

Reflected text injection in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote unauthenticated attacker to inject arbitrary te...

6.1CVSS0.00663EPSS
Exploits0References1
CVE
CVE
added 2025/09/09 3:52 p.m.24 views

CVE-2025-55143

CVE-2025-55143 is a reflected text injection vulnerability affecting Ivanti Connect Secure < 22.7R2.9 or < 22.8R2, Ivanti Policy Secure < 22.7R1.6, Ivanti ZTA Gateway < 2.8R2.3-723, and Ivanti Neurons for Secure Access

6.1CVSS6.8AI score0.00663EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/09 3:49 p.m.3 views

CVE-2025-55142

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

8.8CVSS6.5AI score0.00855EPSS
Exploits0References1
CVE
CVE
added 2025/09/09 3:49 p.m.23 views

CVE-2025-55142

CVE-2025-55142 describes a missing authorization in Ivanti Connect Secure and related Ivanti products that permits a remote authenticated attacker with read-only admin privileges to configure authentication-related settings. According to multiple sources, the issue affects Ivanti Connect Secure (...

8.8CVSS6.5AI score0.00855EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/09/09 3:45 p.m.9 views

CVE-2025-55141

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

8.8CVSS0.00855EPSS
Exploits0References1
CVE
CVE
added 2025/09/09 3:45 p.m.21 views

CVE-2025-55141

The CVE-2025-55141 issue affects Ivanti Connect Secure (before 22.7R2.9 or 22.8R2), Ivanti Policy Secure (before 22.7R1.6), Ivanti ZTA Gateway (before 2.8R2.3-723), and Ivanti Neurons for Secure Access (before 22.8R1.4). Root cause: missing authorization that allows a remote authenticated attacke...

8.8CVSS6.5AI score0.00855EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/09 3:45 p.m.3 views

CVE-2025-55141

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

8.8CVSS6.5AI score0.00855EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/09 3:41 p.m.5 views

CVE-2025-55139

SSRF in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with admin privileges to enumerate internal...

6.8CVSS6.3AI score0.00846EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/09 3:41 p.m.7 views

CVE-2025-55139

SSRF in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with admin privileges to enumerate internal...

6.8CVSS0.00846EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/09 3:37 p.m.3 views

CVE-2025-55148

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

7.6CVSS6.3AI score0.00515EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/09 3:37 p.m.8 views

CVE-2025-55148

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

7.6CVSS0.00515EPSS
Exploits0References1
CVE
CVE
added 2025/09/09 3:37 p.m.28 views

CVE-2025-55148

Ivanti vulnerabilities (CVE-2025-55148 and related) affect Ivanti Connect Secure, Policy Secure, ZTA Gateways, and Neurons for Secure Access. Root cause: missing authorization checks allow a remote authenticated attacker with read-only admin privileges to configure restricted settings (fix deploy...

7.6CVSS6.3AI score0.00515EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/09/09 3:32 p.m.8 views

CVE-2025-55147

CSRF in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote unauthenticated attacker to execute sensitive actions on behalf of...

8.8CVSS0.00565EPSS
Exploits0References1
Rows per page
Query Builder