Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

21 matches found

Positive Technologies
Positive Technologiesadded 2026/04/14 12:0 a.m.0 views

PT-2026-32648

Name of the Vulnerable Software and Affected Versions Ivanti N-ITSM versions prior to 2025.4 Description Stored Cross-Site Scripting XSS allows a remote authenticated attacker to obtain limited information from other user sessions. This issue requires user interaction to be exploited...

5.7CVSS5.8AI score0.00126EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-50974

Malicious code in bioql PyPI...

9.9CVSS9.4AI score0.13008EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-48469

Malicious code in bioql PyPI...

9.8CVSS8.2AI score0.07469EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-48468

Malicious code in bioql PyPI...

9.8CVSS8.2AI score0.07469EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 4:2 a.m.4 views

CVE-2023-46808

An file upload vulnerability in Ivanti ITSM before 2023.4, allows an authenticated remote user to perform file writes to the server. Successful exploitation may lead to execution of commands in the context of non-root user...

9.9CVSS7.3AI score0.13008EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/02/05 11:58 a.m.6 views

CVE-2024-7570

Improper certificate validation in Ivanti ITSM on-prem and Neurons for ITSM Versions 2023.4 and earlier allows a remote attacker in a MITM position to craft a token that would allow access to ITSM as any user...

8.3CVSS6.5AI score0.01829EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/02/05 11:55 a.m.9 views

CVE-2024-7569

An information disclosure vulnerability in Ivanti ITSM on-prem and Neurons for ITSM versions 2023.4 and earlier allows an unauthenticated attacker to obtain the OIDC client secret via debug information...

9.8CVSS6.1AI score0.07469EPSS
Exploits0References1
NVD
NVDadded 2024/08/13 7:15 p.m.19 views

CVE-2024-7570

Improper certificate validation in Ivanti ITSM on-prem and Neurons for ITSM Versions 2023.4 and earlier allows a remote attacker in a MITM position to craft a token that would allow access to ITSM as any user...

8.3CVSS0.01829EPSS
Exploits0References1
NVD
NVDadded 2024/08/13 7:15 p.m.11 views

CVE-2024-7569

An information disclosure vulnerability in Ivanti ITSM on-prem and Neurons for ITSM versions 2023.4 and earlier allows an unauthenticated attacker to obtain the OIDC client secret via debug information...

9.8CVSS0.07469EPSS
Exploits0References1
OSV
OSVadded 2024/08/13 7:15 p.m.1 views

CVE-2024-7569

An information disclosure vulnerability in Ivanti ITSM on-prem and Neurons for ITSM versions 2023.4 and earlier allows an unauthenticated attacker to obtain the OIDC client secret via debug information...

9.8CVSS7.3AI score0.07469EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/08/13 6:12 p.m.9 views

CVE-2024-7570

Improper certificate validation in Ivanti ITSM on-prem and Neurons for ITSM Versions 2023.4 and earlier allows a remote attacker in a MITM position to craft a token that would allow access to ITSM as any user...

8.3CVSS7.1AI score0.01829EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/08/13 6:10 p.m.12 views

CVE-2024-7569

An information disclosure vulnerability in Ivanti ITSM on-prem and Neurons for ITSM versions 2023.4 and earlier allows an unauthenticated attacker to obtain the OIDC client secret via debug information...

9.6CVSS6.6AI score0.07469EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/08/13 6:10 p.m.16 views

CVE-2024-7569

An information disclosure vulnerability in Ivanti ITSM on-prem and Neurons for ITSM versions 2023.4 and earlier allows an unauthenticated attacker to obtain the OIDC client secret via debug information...

9.6CVSS0.07469EPSS
Exploits0References1
CVE
CVEadded 2024/08/13 6:10 p.m.42 views

CVE-2024-7569

CVE-2024-7569 : Ivanti ITSM on-prem and Neurons for ITSM (versions 2023.4 and earlier) contain an information-disclosure flaw that allows an unauthenticated attacker to retrieve the OIDC client secret via debug information. Public sources consistently describe impact as high confidentiality risk ...

9.8CVSS6.6AI score0.07469EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologiesadded 2024/08/06 12:0 a.m.2 views

PT-2024-8346 · Ivanti · Ivanti Itsm +1

Name of the Vulnerable Software and Affected Versions: Ivanti ITSM on-premise and Neurons for ITSM versions 2023.4 and earlier Description: An information disclosure issue allows an unauthenticated attacker to obtain the OIDC client secret via debug information. This is related to insufficient...

9.8CVSS8.6AI score0.07469EPSS
Exploits0References28
Positive Technologies
Positive Technologiesadded 2024/08/06 12:0 a.m.1 views

PT-2024-8347 · Ivanti · Ivanti Itsm +1

Name of the Vulnerable Software and Affected Versions: Ivanti ITSM on-prem and Neurons for ITSM versions 2023.4 and earlier Description: The issue is related to improper certificate validation, which can be exploited by a remote attacker in a MITM position to create a token that would allow acces...

9.8CVSS8.5AI score0.07469EPSS
Exploits0References26
NVD
NVDadded 2024/03/31 2:15 a.m.10 views

CVE-2023-46808

An file upload vulnerability in Ivanti ITSM before 2023.4, allows an authenticated remote user to perform file writes to the server. Successful exploitation may lead to execution of commands in the context of non-root user...

9.9CVSS9.7AI score0.13008EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/03/31 1:45 a.m.22 views

CVE-2023-46808

An file upload vulnerability in Ivanti ITSM before 2023.4, allows an authenticated remote user to perform file writes to the server. Successful exploitation may lead to execution of commands in the context of non-root user...

9.9CVSS9.7AI score0.13008EPSS
Exploits0References1
CVE
CVEadded 2024/03/31 1:45 a.m.63 views

CVE-2023-46808

CVE-2023-46808 is an authenticated remote file-write vulnerability in Ivanti Neurons for ITSM (affecting on-premises versions 2023.1–2023.3). Successful exploitation can write files to sensitive directories and lead to code execution in the web app user context. Public advisories indicate patches...

9.9CVSS9.5AI score0.13008EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2024/03/31 1:45 a.m.19 views

CVE-2023-46808

An file upload vulnerability in Ivanti ITSM before 2023.4, allows an authenticated remote user to perform file writes to the server. Successful exploitation may lead to execution of commands in the context of non-root user...

9.9CVSS9.7AI score0.13008EPSS
Exploits0References1
Rows per page
Query Builder