Lucene search
K

14 matches found

ATTACKERKB
ATTACKERKB
added 2026/06/01 5:50 p.m.8 views

CVE-2026-9614

An Improper Access Control vulnerability in Ivanti Neurons for ITSM cloud and on-premises allows a remote authenticated attacker to gain administrative access...

8.8CVSS5.8AI score0.0144EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/01 5:50 p.m.32 views

CVE-2026-9614

An Improper Access Control vulnerability in Ivanti Neurons for ITSM cloud and on-premises allows a remote authenticated attacker to gain administrative access...

8.8CVSS0.0144EPSS
Exploits0References1
CVE
CVE
added 2026/06/01 5:50 p.m.42 views

CVE-2026-9614

CVE-2026-9614 affects Ivanti Neurons for ITSM (cloud and on‑premises) with an Improper Access Control flaw that lets a remote authenticated attacker gain administrative access. On‑premises versions 2025.4 and earlier are vulnerable; fixed in 2025.4 Patch 1, 2025.3 Patch 1, or 2025.2 Patch 1. Clou...

8.8CVSS5.8AI score0.0144EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/14 12:0 a.m.8 views

Ivanti Neurons for ITSM 跨站脚本漏洞

Ivanti Neurons for ITSM is a reliable and powerful IT service management solution from the American company Ivanti. Versions of Ivanti Neurons for ITSM prior to 2025.4 contained a cross-site scripting vulnerability. This vulnerability stemmed from stored-cross-site scripting, and it could allow...

5.4CVSS5.7AI score0.00345EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/06 12:0 a.m.9 views

Ivanti Neurons for ITSM Installed (Windows)

Binary data ivantineuronsforitsm.nbin...

7.3AI score
Exploits0References1
NCSC
NCSC
added 2025/05/14 8:16 a.m.9 views

Vulnerability fixed in Ivanti Neurons for ITSM

Ivanti has fixed a vulnerability in Ivanti Neurons On-prem for ITSM Versions for 2023.4, 2024.2, and 2024.3 The vulnerability involves a critical authentication bypass that allows remote, unauthenticated attackers to gain administrative access. This could lead to unauthorized actions within the...

9.8CVSS9.4AI score0.01871EPSS
Exploits0References1
OSV
OSV
added 2025/05/13 4:15 p.m.5 views

CVE-2025-22462

An authentication bypass in Ivanti Neurons for ITSM on-prem only before 2023.4, 2024.2 and 2024.3 with the May 2025 Security Patch allows a remote unauthenticated attacker to gain administrative access to the system...

9.8CVSS7.6AI score0.01871EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/13 12:0 a.m.4 views

Ivanti Neurons for ITSM 安全漏洞

Ivanti Neurons for ITSM is an automation platform for IT service management, based on artificial intelligence and machine learning technologies, designed to optimize the IT service delivery process and enhance user experience. An authentication bypass vulnerability exists in Ivanti Neurons for...

9.8CVSS7.2AI score0.01871EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/11/20 12:0 a.m.8 views

The vulnerability of the OIDC protocol implementation in the IT service management tool Ivanti Neurons for ITSM allows a attacker to execute a type of “man-in-the-middle” attack.

The vulnerability of the OpenID Connect OIDC implementation in the IT service management tool Ivanti Neurons for ITSM is related to improper verification of certificates. Exploiting this vulnerability could allow a malicious actor to execute a “man-in-the-middle” attack...

8.3CVSS8AI score0.00542EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/20 12:0 a.m.7 views

The vulnerability of the OIDC protocol implementation in the IT service management tool Ivanti Neurons for ITSM allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the OpenID Connect OIDC implementation of the IT service management tool Ivanti Neurons for ITSM is related to insufficient protection of sensitive data. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...

10CVSS7.7AI score0.01639EPSS
Exploits0References4Affected Software1
Ivanti
Ivanti
added 2024/05/21 2:10 p.m.25 views

Security Advisory May 2024

Vulnerabilities have been discovered in the following Ivanti solutions and fixes are available now. Please review the knowledge base article for the associated solution for detailed information on how to remediate the weaknesses. Update October 1 : Ivanti has confirmed exploitation of...

9.6CVSS8.4AI score0.99951EPSS
Exploits5
Positive Technologies
Positive Technologies
added 2024/05/20 12:0 a.m.11 views

PT-2024-4036 · Ivanti · Ivanti Neurons For Itsm

Name of the Vulnerable Software and Affected Versions: Ivanti Neurons for ITSM affected versions not specified Description: The issue is related to an unrestricted file upload vulnerability in the web component of Ivanti Neurons for ITSM. This vulnerability allows a remote, authenticated,...

8.8CVSS8.6AI score0.01116EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/05/20 12:0 a.m.6 views

PT-2024-4021 · Ivanti · Ivanti Neurons For Itsm

Name of the Vulnerable Software and Affected Versions: Ivanti Neurons for ITSM affected versions not specified Description: The issue is related to a SQL injection vulnerability in the web component of Ivanti Neurons for ITSM, due to inadequate protection of the SQL query structure. This...

9CVSS8.8AI score0.01116EPSS
Exploits0References7
The Hacker News
The Hacker News
added 2024/03/21 3:55 a.m.86 views

Ivanti Releases Urgent Fix for Critical Sentry RCE Vulnerability

Ivanti has disclosed details of a critical remote code execution flaw impacting Standalone Sentry, urging customers to apply the fixes immediately to stay protected against potential cyber threats. Tracked as CVE-2023-41724, the vulnerability carries a CVSS score of 9.6. "An unauthenticated threa...

7.6AI score0.12844EPSS
Exploits0
Rows per page
Query Builder