Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:28 p.m.10 views

CVE-2026-4913

Improper protection of an alternate path in Ivanti N-ITSM before version 2025.4 allows a remote authenticated attacker to retain access when their account has been disabled...

5.7CVSS5.4AI score0.00586EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/14 3:30 p.m.2 views

EUVD-2026-22280

Stored XSS in Ivanti N-ITSM before version 2025.4 allows a remote authenticated attacker to obtain limited information from other user sessions. User interaction is required...

5.7CVSS5.8AI score0.00586EPSS
Exploits0References2
NVD
NVD
added 2026/04/14 3:16 p.m.5 views

CVE-2026-4913

Improper protection of an alternate path in Ivanti N-ITSM before version 2025.4 allows a remote authenticated attacker to retain access when their account has been disabled...

5.7CVSS0.00586EPSS
Exploits0References1
NVD
NVD
added 2026/04/14 3:16 p.m.7 views

CVE-2026-4914

Stored XSS in Ivanti N-ITSM before version 2025.4 allows a remote authenticated attacker to obtain limited information from other user sessions. User interaction is required...

5.4CVSS0.00345EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/14 2:15 p.m.4 views

CVE-2026-4914

Stored XSS in Ivanti N-ITSM before version 2025.4 allows a remote authenticated attacker to obtain limited information from other user sessions. User interaction is required...

5.4CVSS5.8AI score0.00345EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/14 2:15 p.m.24 views

CVE-2026-4914

Stored XSS in Ivanti N-ITSM before version 2025.4 allows a remote authenticated attacker to obtain limited information from other user sessions. User interaction is required...

5.4CVSS0.00345EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/14 2:15 p.m.6 views

CVE-2026-4914

Stored XSS in Ivanti N-ITSM before version 2025.4 allows a remote authenticated attacker to obtain limited information from other user sessions. User interaction is required...

5.7CVSS5.8AI score0.00586EPSS
Exploits0References2
CVE
CVE
added 2026/04/14 2:15 p.m.9 views

CVE-2026-4914

Ivanti N‑ITSM is affected (before version 2025.4) by a Stored XSS vulnerability that requires user interaction and authenticated access. An attacker can remotely obtain limited information from other user sessions, with a Confidentiality impact of Low and no Availability impact (CVSS v3.1 base 5....

5.4CVSS5.8AI score0.00345EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/14 2:10 p.m.23 views

CVE-2026-4913

Improper protection of an alternate path in Ivanti N-ITSM before version 2025.4 allows a remote authenticated attacker to retain access when their account has been disabled...

5.7CVSS0.00586EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/14 2:10 p.m.4 views

CVE-2026-4913

Improper protection of an alternate path in Ivanti N-ITSM before version 2025.4 allows a remote authenticated attacker to retain access when their account has been disabled...

5.7CVSS5.8AI score0.00586EPSS
Exploits0References1
CVE
CVE
added 2026/04/14 2:10 p.m.11 views

CVE-2026-4913

CVE-2026-4913 involves Ivanti N-ITSM prior to 2025.4, where an improper protection of an alternate path could let a remote authenticated attacker retain access even after their account is disabled. The CVSS 3.1 base metrics reflect a Network attack vector with low attack complexity and required p...

5.7CVSS5.8AI score0.00586EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/14 2:10 p.m.3 views

CVE-2026-4913

Improper protection of an alternate path in Ivanti N-ITSM before version 2025.4 allows a remote authenticated attacker to retain access when their account has been disabled...

5.7CVSS5.8AI score0.00586EPSS
Exploits0References2
Rows per page
Query Builder