CVE-2019-12374

A SQL Injection vulnerability exists in Ivanti LANDESK Management Suite LDMS, aka Endpoint Manager 10.0.1.168 Service Update 5 due to improper username sanitization in the Basic Authentication implementation in core/provisioning.secure/ProvisioningSecure.asmx in Provisioning.Secure.dll...

CVE-2019-12375

Open directories in Ivanti LANDESK Management Suite LDMS, aka Endpoint Manager 10.0.1.168 Service Update 5 may lead to remote information disclosure and arbitrary code execution...

CVE-2019-12373

Improper access control and open directories in Ivanti LANDESK Management Suite LDMS, aka Endpoint Manager 10.0.1.168 Service Update 5 may lead to remote disclosure of administrator passwords...

EUVD-2019-4008

Malware in sbrugna...

EUVD-2019-4012

Malware in sbrugna...

EUVD-2019-4011

Malware in sbrugna...

EUVD-2019-4009

Malware in sbrugna...

EUVD-2019-4010

Malware in sbrugna...

EUVD-2025-12199

Malicious code in bioql PyPI...

CVE-2019-12377

A vulnerable upl/asyncupload.asp web API endpoint in Ivanti LANDESK Management Suite LDMS, aka Endpoint Manager 10.0.1.168 Service Update 5 allows arbitrary file upload, which may lead to arbitrary remote code execution...

CVE-2019-12376

Use of a hard-coded encryption key in Ivanti LANDESK Management Suite LDMS, aka Endpoint Manager 10.0.1.168 Service Update 5 may lead to full managed endpoint compromise by an authenticated user with read privileges...

CVE-2025-43716

A directory traversal vulnerability exists in Ivanti LANDesk Management Gateway through 4.2-1.9. By appending %3F.php to the URI of the /client/index.php endpoint, an attacker can bypass access controls and gain unauthorized access to various endpoints such as...

Ivanti LANDesk Management Gateway Directory Traversal Vulnerability

Ivanti LANDesk Management Gateway is a solution for remote management and control of IT devices, primarily designed to simplify the management and maintenance of devices in corporate environments. A directory traversal vulnerability exists in Ivanti LANDesk Management Gateway. The vulnerability...

CVE-2025-43716

A directory traversal vulnerability exists in Ivanti LANDesk Management Gateway through 4.2-1.9. By appending %3F.php to the URI of the /client/index.php endpoint, an attacker can bypass access controls and gain unauthorized access to various endpoints such as...

CVE-2025-43716

A directory traversal vulnerability exists in Ivanti LANDesk Management Gateway through 4.2-1.9. By appending %3F.php to the URI of the /client/index.php endpoint, an attacker can bypass access controls and gain unauthorized access to various endpoints such as...

PT-2025-17626 · Ivanti · Ivanti Landesk Management Gateway

Name of the Vulnerable Software and Affected Versions: Ivanti LANDesk Management Gateway versions 4.2-1.9 Description: A directory traversal issue exists, allowing an attacker to bypass access controls and gain unauthorized access to various endpoints within the management web panel by appending...

Ivanti LANDesk Management Gateway 安全漏洞

Ivanti LANDesk Management Gateway is a solution for remote management and control of IT devices, primarily designed to simplify the management and maintenance of devices in corporate environments. A directory traversal vulnerability exists in Ivanti LANDesk Management Gateway. The vulnerability...

CVE-2025-43716

CVE-2025-43716 describes a directory traversal in Ivanti LANDesk Management Gateway up to version 4.2-1.9. By appending “%3F.php” to the URI of /client/index.php, an attacker can bypass access controls and access endpoints such as /client/index.php%3F.php/gsb/firewall.php in the management web pa...

CVE-2025-43716

A directory traversal vulnerability exists in Ivanti LANDesk Management Gateway through 4.2-1.9. By appending %3F.php to the URI of the /client/index.php endpoint, an attacker can bypass access controls and gain unauthorized access to various endpoints such as...

Ivanti LANDESK Management Suite 安全漏洞

Ivanti LANDESK Management Suite LDMS is a suite of endpoint security management software from Ivanti Corporation, USA. A security vulnerability exists in Ivanti LANDESK Management Suite that originates from allowing a user to execute commands with elevated privileges...