Lucene search
K

8 matches found

OSV
OSV
added 2024/08/13 7:15 p.m.4 views

CVE-2024-7569

An information disclosure vulnerability in Ivanti ITSM on-prem and Neurons for ITSM versions 2023.4 and earlier allows an unauthenticated attacker to obtain the OIDC client secret via debug information...

9.8CVSS7.3AI score0.01639EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/13 6:10 p.m.14 views

CVE-2024-7569

An information disclosure vulnerability in Ivanti ITSM on-prem and Neurons for ITSM versions 2023.4 and earlier allows an unauthenticated attacker to obtain the OIDC client secret via debug information...

9.6CVSS6.6AI score0.01639EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/13 6:10 p.m.31 views

CVE-2024-7569

An information disclosure vulnerability in Ivanti ITSM on-prem and Neurons for ITSM versions 2023.4 and earlier allows an unauthenticated attacker to obtain the OIDC client secret via debug information...

9.6CVSS0.01639EPSS
Exploits0References1
Ivanti
Ivanti
added 2024/08/13 2:0 p.m.15 views

Security Advisory: Ivanti Neurons for ITSM (CVE-2024-7569, CVE-2024-7570)

Ivanti has released updates for Ivanti Neurons for ITSM which addresses a critical severity vulnerability and a high severity vulnerability. Please note: the patch has been applied to all Ivanti Neurons for ITSM Cloud landscapes as of August 4. No further action is needed for cloud customers, we...

9.8CVSS6.8AI score0.01639EPSS
Exploits0
CISA
CISA
added 2024/08/13 12:0 p.m.16 views

Ivanti Releases Security Updates for Avalanche, Neurons for ITSM, and Virtual Traffic Manager

Ivanti released security updates to address multiple vulnerabilities in Ivanti Avalanche, Neurons for ITSM, and Virtual Traffic Manager vTM. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. Ivanti advises users to reduce their attack surface...

10AI score0.99987EPSS
Exploits5References4
Cvelist
Cvelist
added 2024/05/31 5:38 p.m.35 views

CVE-2024-22060

An unrestricted file upload vulnerability in web component of Ivanti Neurons for ITSM allows a remote, authenticated, high privileged user to write arbitrary files into sensitive directories of ITSM server...

8.7CVSS8.4AI score0.01116EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2024/05/23 9:21 a.m.51 views

Ivanti Patches Critical Remote Code Execution Flaws in Endpoint Manager

Ivanti on Tuesday rolled out fixes to address multiple critical security flaws in Endpoint Manager EPM that could be exploited to achieve remote code execution under certain circumstances. Six of the 10 vulnerabilities – from CVE-2024-29822 through CVE-2024-29827 CVSS scores: 9.6 – relate to SQL...

9.9CVSS9.8AI score0.71685EPSS
Exploits1
Malwarebytes
Malwarebytes
added 2024/03/21 9:22 p.m.38 views

Patch Ivanti Standalone Sentry and Ivanti Neurons for ITSM now

Ivanti has issued patches for two vulnerabilities. One was discovered in the Ivanti Standalone Sentry, which impacts all supported versions 9.17.0, 9.18.0, and 9.19.0. Older versions are also at risk. The other vulnerability impacts all supported versions of Ivanti Neurons for ITSM—2023.3, 2023.2...

8AI score0.12844EPSS
Exploits0
Rows per page
Query Builder