CVE-2019-12374

A SQL Injection vulnerability exists in Ivanti LANDESK Management Suite LDMS, aka Endpoint Manager 10.0.1.168 Service Update 5 due to improper username sanitization in the Basic Authentication implementation in core/provisioning.secure/ProvisioningSecure.asmx in Provisioning.Secure.dll...

CVE-2019-12375

Open directories in Ivanti LANDESK Management Suite LDMS, aka Endpoint Manager 10.0.1.168 Service Update 5 may lead to remote information disclosure and arbitrary code execution...

CVE-2019-12373

Improper access control and open directories in Ivanti LANDESK Management Suite LDMS, aka Endpoint Manager 10.0.1.168 Service Update 5 may lead to remote disclosure of administrator passwords...

EUVD-2019-4010

Malware in sbrugna...

EUVD-2019-4008

Malware in sbrugna...

EUVD-2019-4011

Malware in sbrugna...

EUVD-2019-4009

Malware in sbrugna...

EUVD-2019-4012

Malware in sbrugna...

EUVD-2025-12199

Malicious code in bioql PyPI...

CVE-2019-12377

A vulnerable upl/asyncupload.asp web API endpoint in Ivanti LANDESK Management Suite LDMS, aka Endpoint Manager 10.0.1.168 Service Update 5 allows arbitrary file upload, which may lead to arbitrary remote code execution...

CVE-2019-12376

Use of a hard-coded encryption key in Ivanti LANDESK Management Suite LDMS, aka Endpoint Manager 10.0.1.168 Service Update 5 may lead to full managed endpoint compromise by an authenticated user with read privileges...

CVE-2025-43716

A directory traversal vulnerability exists in Ivanti LANDesk Management Gateway through 4.2-1.9. By appending %3F.php to the URI of the /client/index.php endpoint, an attacker can bypass access controls and gain unauthorized access to various endpoints such as...

Ivanti LANDesk Management Gateway Directory Traversal Vulnerability

Ivanti LANDesk Management Gateway is a solution for remote management and control of IT devices, primarily designed to simplify the management and maintenance of devices in corporate environments. A directory traversal vulnerability exists in Ivanti LANDesk Management Gateway. The vulnerability...

CVE-2025-43716

A directory traversal vulnerability exists in Ivanti LANDesk Management Gateway through 4.2-1.9. By appending %3F.php to the URI of the /client/index.php endpoint, an attacker can bypass access controls and gain unauthorized access to various endpoints such as...

PT-2025-17626 · Ivanti · Ivanti Landesk Management Gateway

Name of the Vulnerable Software and Affected Versions: Ivanti LANDesk Management Gateway versions 4.2-1.9 Description: A directory traversal issue exists, allowing an attacker to bypass access controls and gain unauthorized access to various endpoints within the management web panel by appending...

CVE-2025-43716

A directory traversal vulnerability exists in Ivanti LANDesk Management Gateway through 4.2-1.9. By appending %3F.php to the URI of the /client/index.php endpoint, an attacker can bypass access controls and gain unauthorized access to various endpoints such as...

CVE-2025-43716

CVE-2025-43716 describes a directory traversal in Ivanti LANDesk Management Gateway up to version 4.2-1.9. By appending “%3F.php” to the URI of /client/index.php, an attacker can bypass access controls and access endpoints such as /client/index.php%3F.php/gsb/firewall.php in the management web pa...

Ivanti LANDesk Management Gateway 安全漏洞

Ivanti LANDesk Management Gateway is a solution for remote management and control of IT devices, primarily designed to simplify the management and maintenance of devices in corporate environments. A directory traversal vulnerability exists in Ivanti LANDesk Management Gateway. The vulnerability...

CVE-2025-43716

A directory traversal vulnerability exists in Ivanti LANDesk Management Gateway through 4.2-1.9. By appending %3F.php to the URI of the /client/index.php endpoint, an attacker can bypass access controls and gain unauthorized access to various endpoints such as...

Ivanti LANDESK Management Suite 安全漏洞

Ivanti LANDESK Management Suite LDMS is a suite of endpoint security management software from Ivanti Corporation, USA. A security vulnerability exists in Ivanti LANDESK Management Suite that originates from allowing a user to execute commands with elevated privileges...