Lucene search
K
IvantiRecent

282 matches found

Ivanti
Ivanti
added 2026/06/09 5:17 p.m.26 views

CVE‑2026‑49975 – HTTP/2 Denial of Service Vulnerability

Status: EPMM unaffected Summary: CVE‑2026‑49975 is a denial‑of‑service DoS vulnerability affecting HTTP/2 implementations in several web servers. The issue allows an unauthenticated attacker to exhaust server memory using specially crafted HTTP/2 requests. EPMM / Sentry rely on Apache Tomcat for...

7.5CVSS5.5AI score0.11471EPSS
Exploits7
Ivanti
Ivanti
added 2026/06/09 2:0 p.m.14 views

Security Advisory Ivanti Sentry (CVE-2026-10520, CVE-2026-10523)

Last Modified Date 16-Jun-2026 0:48:48...

10CVSS7.5AI score0.98937EPSS
Exploits5
Ivanti
Ivanti
added 2026/06/09 1:58 p.m.19 views

Security Advisory Ivanti Endpoint Manager Mobile (EPMM) (CVE-2026-10727)

Update 11 June: FAQ Updated Summary Ivanti has released updates for Ivanti Endpoint Manager Mobile EPMM which addresses one high severity vulnerability. We are not aware of any customers being exploited by this vulnerability at the time of disclosure. Vulnerability Details CVE Number | Descriptio...

7.2CVSS6.1AI score0.01634EPSS
Exploits0
Ivanti
Ivanti
added 2026/06/05 4:45 p.m.9 views

Epmm + Sentry Not Affected by Cve-2026-4408 or Cve-2026-4480

Last Modified Date Jun 5, 2026 4:45:08 PM...

9.8CVSS5.7AI score0.12797EPSS
Exploits7
Ivanti
Ivanti
added 2026/06/01 1:56 p.m.13 views

Security Advisory Ivanti Neurons for ITSM (CVE-2026-9614)

Ivanti has released updates for Ivanti Neurons for ITSM which addresses one high severity vulnerability. Successful exploitation could lead to authenticated privilege escalation to an administrator. We are not aware of any customers being exploited by this vulnerability at the time of disclosure...

8.8CVSS5.8AI score0.0144EPSS
Exploits0
Ivanti
Ivanti
added 2026/05/12 2:3 p.m.22 views

May 2026 Security Advisory Ivanti Virtual Traffic Manager (vTM) (CVE-2026-8051)

Summary Ivanti has released updates for Ivanti Virtual Traffic Manager which addresses one High severity vulnerability. Successful exploitation could lead to admin authenticated remote code execution. We are not aware of any customers being exploited by this vulnerability at the time of disclosur...

7.2CVSS6.1AI score0.01914EPSS
Exploits0
Ivanti
Ivanti
added 2026/05/12 2:2 p.m.37 views

May 2026 Security Advisory Ivanti Secure Access Client (CVE-2026-7431, CVE-2026-7432)

Update 22 May: CVE-2026-8992 has been added to Vulnerability Details Summary Ivanti has released updates for the Ivanti Secure Access Client which addresses one medium severity vulnerability and two High severity vulnerabilities. We are not aware of any customers being exploited by these...

8.8CVSS6.2AI score0.00564EPSS
Exploits0
Ivanti
Ivanti
added 2026/05/12 2:0 p.m.23 views

Security Advisory - Ivanti Xtraction (CVE-2026-8043)

Summary Ivanti has released an update for Ivanti Xtraction which addresses one Critical severity vulnerability. Successful exploitation could lead to sensitive information disclosure and client-side attacks. We are not aware of any customers being exploited by this vulnerability at the time of...

9.6CVSS5.9AI score0.00869EPSS
Exploits0
Ivanti
Ivanti
added 2026/05/12 1:59 p.m.31 views

Security Advisory Ivanti Endpoint Manager (EPM) May 2026

Security Advisory Ivanti Endpoint Manager EPM CVE-2026-8109, CVE-2026-8110, CVE-2026-811 Summary Ivanti has released updates for Ivanti Endpoint Manager which addresses one Medium severity and two High severity vulnerabilities. Successful exploitation could lead to information disclosure, privile...

8.8CVSS6.3AI score0.00883EPSS
Exploits0
Ivanti
Ivanti
added 2026/05/07 2:11 p.m.128 views

May 2026 Security Advisory Ivanti Endpoint Manager Mobile (EPMM) (Multiple CVEs)

Summary Ivanti has released updates for Ivanti Endpoint Manager Mobile EPMM which addresses five high severity vulnerabilities. We are aware of a very limited number of customers exploited with CVE-2026-6973. Successful exploitation requires Admin authentication. If customers followed Ivanti’s...

9.8CVSS6.1AI score0.34454EPSS
Exploits0
Ivanti
Ivanti
added 2026/04/20 4:12 a.m.12 views

Using Vulnerable Libssh Version < 0.12 in Sentry

Last Modified Date Apr 20, 2026 4:13:44 AM...

5.8AI score
Exploits0
Ivanti
Ivanti
added 2026/04/14 1:59 p.m.8 views

Security Advisory Ivanti Neurons for ITSM (CVE-2026-4913, CVE-2026-4914)

Ivanti has released updates for Ivanti Neurons for ITSM which addresses two medium severity vulnerabilities We are not aware of any customers being exploited by these vulnerabilities at the time of disclosure. Vulnerability Details: CVE Number | Description | CVSS Score Severity | CVSS Vector | C...

5.7CVSS5.8AI score0.00586EPSS
Exploits0
Ivanti
Ivanti
added 2026/03/10 9:26 a.m.36 views

Security Advisory Ivanti DSM (CVE-2026-3483)

Security Advisory Ivanti DSM CVE-2026-3483 Summary Ivanti has released an update for Ivanti Desktop and Server Management DSM which addresses one high severity vulnerability. Successful exploitation could allow an attacker to elevate their local privileges. We are not aware of any customers being...

7.8CVSS5.8AI score0.00397EPSS
Exploits0
Ivanti
Ivanti
added 2026/02/09 8:55 p.m.34 views

Security Advisory EPM February 2026 for EPM 2024

Update 18 Feb: Added FAQ on patching Agents. Summary Ivanti has released updates for Ivanti Endpoint Manager which addresses one high severity vulnerability and one medium severity vulnerability. Successful exploitation could allow a remote authenticated attacker to leak arbitrary data or...

8.6CVSS6.4AI score0.81089EPSS
Exploits0
Ivanti
Ivanti
added 2026/01/29 6:38 p.m.12 views

Security Advisory Ivanti Endpoint Manager Mobile (EPMM) (CVE-2026-1281 & CVE-2026-1340)

Update 29 Jan: Step by Step RPM Install KB included Update 4 Feb: Fixed in Security Update: 0S-4 and 0L-4 included Update: 6 Feb: RPM detection script available to help customers assess potential impact. Technical Analysis updated with reliable Indicators of Compromise IoC’s. Both in partnership...

9.8CVSS7.6AI score0.8404EPSS
Exploits6
Ivanti
Ivanti
added 2025/12/18 7:48 p.m.8 views

Urgent Reminder to Update Edge Appliances During Peak Holiday Time-off

Customer Alert: Proactive Defense Against Threat Actor Campaigns Targeting Unpatched Network Security Solutions As the holiday season approaches, we are urging all Ivanti customers to ensure that all their network security solutions are updated to their latest versions, regardless of vendor. We...

7.5AI score
Exploits0
Ivanti
Ivanti
added 2025/12/14 8:58 p.m.6 views

Impact of CVE-2025-66516 On Ivanti EPMM

Last Modified Date Apr 21, 2026 7:10:37 AM...

9.8CVSS7.4AI score0.79807EPSS
Exploits5
Ivanti
Ivanti
added 2025/12/08 8:19 p.m.8 views

Security Advisory EPM December 2025 for EPM 2024

Summary: Ivanti has released an update for Ivanti Endpoint Manager EPM which addresses three high severity vulnerabilities and one critical severity vulnerability in the EPM core and remote consoles. We are not aware of any customers being exploited by these vulnerabilities at the time of...

9.6CVSS7.6AI score0.29494EPSS
Exploits0
Ivanti
Ivanti
added 2025/11/10 4:30 p.m.8 views

Security Advisory EPM November 2025 for EPM 2024

Summary Ivanti has released updates for Ivanti Endpoint Manager which addresses three high vulnerabilities. Successful exploitation could allow a local authenticated attacker to write arbitrary files anywhere on disk. Two of the resolved vulnerabilities, CVE-2025-9713 and CVE-2025-11622, were...

7.8CVSS7AI score0.00737EPSS
Exploits0
Ivanti
Ivanti
added 2025/10/31 3:15 p.m.15 views

Impact Of CVE-2025-55752 And CVE-2025-55754 On EPMM, Sentry, Connector

Last Modified Date Oct 31, 2025 3:15:00 PM...

9.6CVSS8.8AI score0.66535EPSS
Exploits4
Ivanti
Ivanti
added 2025/10/14 1:58 p.m.9 views

Security Advisory Endpoint Manager Mobile (EPMM) 10/2025 (Multiple CVEs)

Security Advisory Endpoint Manager Mobile EPMM Multiple CVEs Summary Ivanti has released updates for EPMM which addresses one medium and three high severity vulnerabilities. Successful exploitation requires authentication and could lead to remote code execution. We are not aware of any customers...

7.2CVSS8.3AI score0.21105EPSS
Exploits0
Ivanti
Ivanti
added 2025/10/14 1:57 p.m.8 views

October 2025 Security Advisory Ivanti Neurons for MDM

Summary Ivanti has released updates for Ivanti Neurons for MDM which addresses one medium and two high severity vulnerabilities. We are not aware of any customers being exploited by these vulnerabilities at the time of disclosure. Vulnerability Details Description | CVSS Score Severity | CVSS...

7AI score
Exploits0
Ivanti
Ivanti
added 2025/10/13 8:53 p.m.12 views

Security Advisory Ivanti Endpoint Manager (EPM) October 2025

Security Advisory Ivanti Endpoint Manager EPM October 2025 Multiple CVEs Summary Update Nov. 11, 2025: A fix has been released for CVE-2025-11622 and CVE-2025-9713. To resolve these vulnerabilities customers should update to EPM 2024 SU4. Update Feb. 10, 2026: A fix to resolve the remaining CVE's...

8.8CVSS8AI score0.14489EPSS
Exploits0
Ivanti
Ivanti
added 2025/09/09 1:59 p.m.11 views

September Security Advisory Ivanti Connect Secure, Policy Secure, ZTA Gateways and Neurons for Secure Access (Multiple CVEs)

Update 10 Sept Ivanti Policy Secure: Affected and Resolved in Versions updated Summary Ivanti has released updates for Ivanti Connect Secure, Policy Secure, ZTA Gateways and Neurons for Secure Access which addresses six medium and five high vulnerabilities. We are not aware of any customers being...

8.9CVSS7.6AI score0.00855EPSS
Exploits0
Ivanti
Ivanti
added 2025/09/09 1:39 p.m.8 views

Security Advisory September 2025 for Ivanti EPM 2024 SU3 and EPM 2022 SU8

Security Advisory Ivanti Endpoint Manager CVE-2025-9712, CVE-2025-9872 Summary Ivanti has released updates for Ivanti Endpoint Manager EPM which addresses high severity vulnerabilities. We are not aware of any customers being exploited by these vulnerabilities at the time of disclosure...

8.8CVSS7.8AI score0.20461EPSS
Exploits0
Ivanti
Ivanti
added 2025/08/12 2:4 p.m.50 views

August Security Advisory Ivanti Virtual Application Delivery Controller (vADC previously vTM) (CVE-2025-8310)

Summary Ivanti has released updates for Ivanti Virtual Application Delivery Controller vADC, previously Virtual Traffic Manager vTM, which addresses one medium severity vulnerability. Successful exploitation could lead to account takeover. We are not aware of any customers being exploited by this...

8.8CVSS7.2AI score0.00735EPSS
Exploits0
Ivanti
Ivanti
added 2025/08/12 2:4 p.m.26 views

August Security Advisory Ivanti Connect Secure, Policy Secure & ZTA Gateways (Multiple CVEs)

Summary Ivanti has released updates for Ivanti Connect Secure which addresses medium, high, and critical vulnerabilities. We are not aware of any customers being exploited by these vulnerabilities at the time of disclosure. Vulnerability Details: CVE Number | Description | CVSS Score Severity |...

7.5CVSS8.1AI score0.01045EPSS
Exploits0
Ivanti
Ivanti
added 2025/07/30 6:29 p.m.9 views

Security Advisory Ivanti Avalanche (CVE-2025-8296, CVE-2025-8297) 

Summary Ivanti has released updates for Ivanti Avalanche which addresses two high severity vulnerabilities. Successful exploitation could lead to authenticated remote code execution. We are not aware of any customers being exploited by these vulnerabilities at the time of disclosure. Vulnerabilit...

7.2CVSS9.2AI score0.01138EPSS
Exploits0
Ivanti
Ivanti
added 2025/07/08 2:35 p.m.33 views

Security Advisory Ivanti Endpoint Manager Mobile (EPMM) (CVE-2025-6770, CVE-2025-6771)

Security Advisory Ivanti Endpoint Manager Mobile EPMM CVE-2025-6770, CVE-2025-6771 Summary Ivanti has released updates for Ivanti Endpoint Manager Mobile which addresses two high severity vulnerabilities. We are not aware of any customers being exploited by these vulnerabilities at the time of...

7.2CVSS7.7AI score0.14809EPSS
Exploits0
Ivanti
Ivanti
added 2025/07/08 1:59 p.m.19 views

Security Advisory July 2025 for Ivanti EPM 2024 SU2 and EPM 2022 SU8

Security Advisory Ivanti EPM 2022 SU8 and EPM 2024 SU2 Multiple CVEs Summary Ivanti has released updates for Ivanti Endpoint Manager EPM which addresses three high severity vulnerabilities. The Security vulnerability affects the Core, Remote Consoles and Windows agents. We are not aware of any...

8.4CVSS7.1AI score0.00883EPSS
Exploits0
Ivanti
Ivanti
added 2025/07/08 1:58 p.m.22 views

July Security Advisory Ivanti Connect Secure and Ivanti Policy Secure (Multiple CVEs)

Ivanti has released updates for Ivanti Connect Secure ICS and Ivanti Policy Secure IPS, which address medium severity vulnerabilities. We are not aware of any customers being exploited by these vulnerabilities at the time of disclosure. Vulnerability Details: CVE Number | Description | CVSS Score...

6.6CVSS7.3AI score0.0065EPSS
Exploits0
Ivanti
Ivanti
added 2025/07/07 8:33 a.m.14 views

Impact Of CVE-2025-32462, CVE-2025-32463 On Ivanti EPMM and Sentry

Last Modified Date Oct 16, 2025 7:23:33 PM...

9.3CVSS6.9AI score0.47467EPSS
Exploits77
Ivanti
Ivanti
added 2025/06/10 2:2 p.m.23 views

Security Advisory Ivanti Workspace Control (CVE-2025-5353, CVE- CVE-2025-22463, CVE-2025-22455)

Summary Ivanti has released updates for Ivanti Workspace Control which address three high severity vulnerabilities. Successful exploitation could lead to credential compromise. We are not aware of any customers being exploited by these vulnerabilities at the time of disclosure. Vulnerability...

8.8CVSS8.7AI score0.00352EPSS
Exploits0
Ivanti
Ivanti
added 2025/05/13 3:36 p.m.37 views

Security Advisory Ivanti Endpoint Manager Mobile (EPMM) May 2025 (CVE-2025-4427 and CVE-2025-4428)

Ivanti has released updates for Endpoint Manager Mobile EPMM which addresses one medium and one high severity vulnerability. When chained together, successful exploitation could lead to unauthenticated remote code execution. We are aware of a very limited number of customers whose solution has be...

8.8CVSS9.2AI score0.99589EPSS
Exploits10
Ivanti
Ivanti
added 2025/05/13 2:4 p.m.11 views

Security Advisory Ivanti Neurons for ITSM (On-Premises Only) (CVE-2025-22462)

Security Advisory Ivanti Neurons for ITSM on-premises only CVE-2025-22462 Summary Ivanti has released updates for Ivanti Neurons for ITSM on-prem only which addresses one critical severity vulnerability. Depending on system configuration, successful exploitation could allow an unauthenticated...

9.8CVSS10AI score0.01871EPSS
Exploits0
Ivanti
Ivanti
added 2025/05/13 2:0 p.m.14 views

Security Advisory Ivanti Cloud Services Application (CVE-2025-22460)

Summary: Ivanti has released updates for Ivanti Cloud Services Application which addresses one high severity vulnerability. Successful exploitation could lead to local privilege escalation. We are not aware of any customers being exploited by this vulnerability at the time of disclosure...

7.8CVSS7.4AI score0.00326EPSS
Exploits0
Ivanti
Ivanti
added 2025/05/13 2:0 p.m.25 views

Security Advisory May 2025 Ivanti Neurons for MDM (N-MDM)

Update 5 August, 2025: Added additional information on security issue fixed in R114. Summary Ivanti has released updates for Ivanti Neurons for MDM N-MDM which addresses two medium severity vulnerabilities. Successful exploitation could allow a remote unauthenticated attacker to edit or delete...

7.3AI score
Exploits0
Ivanti
Ivanti
added 2025/04/08 2:1 p.m.514 views

Security Advisory April 2025 for Ivanti EPM 2024 and EPM 2022 SU6

Security Advisory Ivanti EPM 2022 SU6 and EPM 2024 Multiple CVEs Summary Ivanti has released updates for Ivanti Endpoint Manager which addresses medium and high vulnerabilities. We are not aware of any customers being exploited by these vulnerabilities at the time of disclosure. Vulnerability...

9.6CVSS8AI score0.01311EPSS
Exploits1
Ivanti
Ivanti
added 2025/04/03 1:53 p.m.43 views

April Security Advisory Ivanti Connect Secure, Policy Secure & ZTA Gateways (CVE-2025-22457)

This advisory has been updated to make it clear the vulnerability was fully patched in Ivanti Connect Secure released February 11, 2025. Update April 23, 2025: This advisory has been updated to reflect changes to the Ivanti Policy Secure Versioning and the affected release date. Update May 14,...

9.8CVSS10AI score0.99973EPSS
Exploits7
Ivanti
Ivanti
added 2025/03/11 1:52 p.m.725 views

March Security Advisory Ivanti Secure Access Client (ISAC) (CVE-2025-22454)

Summary Ivanti has released updates for Ivanti Secure Access Client ISAC which addresses one high severity vulnerability. Successful exploitation could lead to privilege escalation. We are not aware of any customers being exploited by these vulnerabilities at the time of disclosure. Vulnerability...

7.8CVSS7.2AI score0.00287EPSS
Exploits0
Ivanti
Ivanti
added 2025/03/10 6:55 p.m.721 views

Security Advisory March 2025 Ivanti Neurons for MDM (N-MDM)

Summary Ivanti has released updates for Ivanti Neurons for MDM N-MDM which addresses a medium severity vulnerability. We are not aware of any customers being exploited by this vulnerability at the time of disclosure. Vulnerability Details: Description| CVSS Score Severity| CVSS Vector| CWE...

6.9AI score
Exploits0
Ivanti
Ivanti
added 2025/02/26 3:4 p.m.8 views

Impact of CVE-2025-26465 and CVE-2025-26466 on EPMM, Sentry and Connector

Last Modified Date Apr 15, 2026 5:11:49 AM...

6.8CVSS6.9AI score0.38474EPSS
Exploits5
Ivanti
Ivanti
added 2025/02/11 3:1 p.m.794 views

February Security Advisory Ivanti Connect Secure (ICS),Ivanti Policy Secure (IPS) and Ivanti Secure Access Client (ISAC) (Multiple CVEs)

Summary Ivanti has released updates for Ivanti Connect Secure ICS,Ivanti Policy Secure IPS and Ivanti Secure Access Client ISAC which addresses medium, high and critical severity vulnerabilities. We are not aware of any customers being exploited by these vulnerabilities at the time of disclosure...

9.9CVSS8.2AI score0.03705EPSS
Exploits0
Ivanti
Ivanti
added 2025/02/11 3:0 p.m.719 views

N-MDM - Security Advisory Ivanti Neurons for MDM (N-MDM)

Summary Ivanti has released updates for Ivanti Neurons for MDM N-MDM which addresses a medium severity vulnerability. We are not aware of any customers being exploited by this vulnerability at the time of disclosure. Vulnerability Details: Description | CVSS Score Severity | CVSS Vector | CWE...

7.1AI score
Exploits0
Ivanti
Ivanti
added 2025/02/11 3:0 p.m.616 views

Security Advisory Ivanti Cloud Services Application (CSA) (CVE-2024-47908, CVE-2024-11771)

Summary Ivanti has released updates for Ivanti Cloud Services Application CSA which addresses critical and medium severity vulnerabilities. Successful exploitation of CVE-2024-47908 could allow a remote authenticated attacker to achieve remote code execution and CVE-2024-11771 could allow a remot...

9.1CVSS8.6AI score0.21975EPSS
Exploits0
Ivanti
Ivanti
added 2025/01/14 2:56 p.m.10 views

Security Advisory - Ivanti Application Control Engine (CVE-2024-10630)

Summary Ivanti has released updates for Ivanti Application Control Engine which address a high severity vulnerability. Successful exploitation could lead to bypassing configured protections. We are not aware of any customers being exploited by this vulnerability at the time of disclosure...

7.8CVSS6.5AI score0.00222EPSS
Exploits0
Ivanti
Ivanti
added 2025/01/13 9:46 p.m.23 views

Security Advisory EPM January 2025 for EPM 2024 and EPM 2022 SU6

Update Regarding Ivanti EPM Endpoint Manager Downloads As part of our ongoing efforts to enhance your experience and streamline our processes we have migrated the software downloads from the Ivanti Community to the Ivanti License System ILS. You will continue to use your current Ivanti Single...

9.8CVSS9.7AI score0.99762EPSS
Exploits4
Ivanti
Ivanti
added 2025/01/09 4:18 p.m.577 views

Security Advisory Ivanti Avalanche 6.4.7 (Multiple CVEs)

Summary Ivanti has released updates for Ivanti Avalanche which addresses three high severity vulnerabilities. Successful exploitation of CVE-2024-13181 could allow a remote unauthenticated attacker to bypass authentication. CVE-2024-13180 could allow a remote unauthenticated attacker to leak...

9.8CVSS9.9AI score0.61812EPSS
Exploits0
Ivanti
Ivanti
added 2025/01/08 4:55 p.m.529 views

Security Advisory Ivanti Connect Secure, Policy Secure & ZTA Gateways (CVE-2025-0282, CVE-2025-0283) 

Update: 21 Jan 2025 Patch Now Available for IPS & ZTA Gateways Summary: Ivanti has released an update that addresses one critical and one high vulnerability in Ivanti Connect Secure, Policy Secure and ZTA Gateways. Successful exploitation of CVE-2025-0282 could lead to unauthenticated remote code...

9CVSS8.7AI score0.99971EPSS
Exploits13
Ivanti
Ivanti
added 2024/12/11 3:3 p.m.8 views

December 2024 Security Advisory Ivanti Performance Manager (CVE-2024-11597)

Summary Ivanti has released updates for Performance Manager which address one high severity vulnerability. Successful exploitation could lead to local privilege escalation. We are not aware of any customers being exploited by this vulnerability at the time of disclosure. Vulnerability Details: CV...

7.8CVSS6.6AI score0.00206EPSS
Exploits0
Total number of security vulnerabilities282