Lucene search
K

205 matches found

NVD
NVD
added 2025/09/09 4:15 p.m.8 views

CVE-2025-8711

CSRF in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote unauthenticated attacker to execute limited actions on behalf of th...

5.4CVSS0.00306EPSS
Exploits0References1
OSV
OSV
added 2025/09/09 4:15 p.m.5 views

CVE-2025-55148

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

7.6CVSS5.8AI score0.00515EPSS
Exploits0References1
OSV
OSV
added 2025/09/09 4:15 p.m.3 views

CVE-2025-55144

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

5.4CVSS5.8AI score0.00514EPSS
Exploits0References1
NVD
NVD
added 2025/09/09 4:15 p.m.8 views

CVE-2025-55145

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker to hijack existing HTML5...

8.9CVSS0.0059EPSS
Exploits0References1
NVD
NVD
added 2025/09/09 4:15 p.m.9 views

CVE-2025-55142

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

8.8CVSS0.00855EPSS
Exploits0References1
OSV
OSV
added 2025/09/09 4:15 p.m.4 views

CVE-2025-55145

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker to hijack existing HTML5...

8.9CVSS5.9AI score0.0059EPSS
Exploits0References1
OSV
OSV
added 2025/09/09 4:15 p.m.5 views

CVE-2025-55146

An unchecked return value in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with admin privileges t...

4.9CVSS5.9AI score0.00744EPSS
Exploits0References1
NVD
NVD
added 2025/09/09 4:15 p.m.9 views

CVE-2025-55146

An unchecked return value in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with admin privileges t...

4.9CVSS0.00744EPSS
Exploits0References1
NVD
NVD
added 2025/09/09 4:15 p.m.9 views

CVE-2025-55144

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

5.4CVSS0.00514EPSS
Exploits0References1
OSV
OSV
added 2025/09/09 4:15 p.m.5 views

CVE-2025-55141

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

8.8CVSS5.9AI score0.00855EPSS
Exploits0References1
OSV
OSV
added 2025/09/09 4:15 p.m.4 views

CVE-2025-55139

SSRF in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with admin privileges to enumerate internal...

6.8CVSS5.9AI score0.00846EPSS
Exploits0References1
NVD
NVD
added 2025/09/09 4:15 p.m.7 views

CVE-2025-55141

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

8.8CVSS0.00855EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/09 3:55 p.m.3 views

CVE-2025-55144

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

5.4CVSS6.3AI score0.00514EPSS
Exploits0References1
CVE
CVE
added 2025/09/09 3:55 p.m.21 views

CVE-2025-55144

CVE-2025-55144 affects Ivanti Connect Secure, Policy Secure, ZTA Gateways, and Neurons for Secure Access. The vulnerability is a missing authorization flaw that lets a remote authenticated attacker with read‑only admin privileges configure restricted settings. Affected versions: Connect Secure &l...

5.4CVSS6.3AI score0.00514EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/09/09 3:52 p.m.23 views

CVE-2025-55143

CVE-2025-55143 is a reflected text injection vulnerability affecting Ivanti Connect Secure < 22.7R2.9 or < 22.8R2, Ivanti Policy Secure < 22.7R1.6, Ivanti ZTA Gateway < 2.8R2.3-723, and Ivanti Neurons for Secure Access

6.1CVSS6.8AI score0.00663EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/09/09 3:52 p.m.21 views

CVE-2025-55143

Reflected text injection in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote unauthenticated attacker to inject arbitrary te...

6.1CVSS0.00663EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/09 3:49 p.m.3 views

CVE-2025-55142

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

8.8CVSS6.5AI score0.00855EPSS
Exploits0References1
CVE
CVE
added 2025/09/09 3:49 p.m.23 views

CVE-2025-55142

CVE-2025-55142 describes a missing authorization in Ivanti Connect Secure and related Ivanti products that permits a remote authenticated attacker with read-only admin privileges to configure authentication-related settings. According to multiple sources, the issue affects Ivanti Connect Secure (...

8.8CVSS6.5AI score0.00855EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/09 3:45 p.m.3 views

CVE-2025-55141

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

8.8CVSS6.5AI score0.00855EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/09 3:45 p.m.9 views

CVE-2025-55141

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

8.8CVSS0.00855EPSS
Exploits0References1
Rows per page
Query Builder