Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2026/05/07 6:30 p.m.9 views

EUVD-2026-28393

An Improper Access Control vulnerability in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remote authenticated attacker to gain administrative access...

8.8CVSS5.8AI score0.00714EPSS
Exploits0References2
Circl
Circladded 2026/05/07 7:54 a.m.8 views

CVE-2026-7821

creationtimestamp| type| source ---|---|--- 2026-05-07 07:54:45+00:00| seen| https://ccb.belgium.be/advisories/warning-authenticated-remote-code-execution-vulnerability-ivanti-epmm-exploited-patch 2026-05-07 08:14:00+00:00| seen| https://www.kyberturvallisuuskeskus.fi/fi/haavoittuvuus-2026-12...

9.1CVSS4.9AI score0.00509EPSS
Exploits0References8
CNNVD
CNNVDadded 2026/05/07 12:0 a.m.8 views

Ivanti EPMM 访问控制错误漏洞

Ivanti EPMM is a product developed by the American company Ivanti, designed to help IT departments establish policies for mobile devices, applications, and content. Versions of Ivanti EPMM prior to 12.6.1.1, 12.7.0.1, and 12.8.0.1 contained an access control vulnerability. This vulnerability...

8.8CVSS6AI score0.00714EPSS
Exploits0References1
NVD
NVDadded 2025/10/14 3:16 p.m.5 views

CVE-2025-10985

OS command injection in the admin panel of Ivanti EPMM before version 12.6.0.2, 12.5.0.4, and 12.4.0.4 allows a remote authenticated attacker with admin privileges to achieve remote code execution...

7.2CVSS0.21105EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/02/05 8:2 a.m.4 views

CVE-2024-29830

An unspecified SQL Injection vulnerability in Core server of Ivanti EPM 2022 SU5 and prior allows an authenticated attacker within the same network to execute arbitrary code...

8.4CVSS8.9AI score0.08484EPSS
Exploits0References1
OSV
OSVadded 2025/01/14 6:15 p.m.2 views

CVE-2024-13164

An uninitialized resource in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a local authenticated attacker to escalate their privileges...

7.8CVSS5.8AI score0.00368EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/10/08 12:0 a.m.3 views

Ivanti CSA 安全漏洞

Ivanti CSA is an Internet appliance from Ivanti, Inc. that provides secure communications and functionality over the Internet. A security vulnerability exists in Ivanti CSA versions prior to 5.0.2 that stems from an operating system command injection vulnerability that could allow a remote,...

7.2CVSS10AI score0.62988EPSS
Exploits0References2
CNNVD
CNNVDadded 2024/05/31 12:0 a.m.3 views

Ivanti EPM SQL注入漏洞

Ivanti EPM is a one-stop shop for managing user profiles and all client devices from Ivanti USA. An SQL injection vulnerability exists in Ivanti EPM 2022 SU5 and prior versions, which can be exploited by an attacker to execute arbitrary code...

9.6CVSS8.3AI score0.99877EPSS
Exploits0References3
CNNVD
CNNVDadded 2024/05/31 12:0 a.m.2 views

Ivanti EPM 安全漏洞

Ivanti EPM is a one-stop shop for managing user profiles and all client devices from Ivanti USA. An SQL injection vulnerability exists in Ivanti EPM 2022 SU5 and prior versions, which can be exploited by an attacker to execute arbitrary code...

8.4CVSS8.8AI score0.08233EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2022/04/11 2:15 p.m.3 views

CVE-2022-27088

Ivanti DSM Remote = 6.3.1.1862 is vulnerable to an unquoted service path allowing local users to launch processes with elevated privileges...

7.8CVSS5.9AI score0.00591EPSS
Exploits0References2
Rows per page
Query Builder