Desktop & Server Management Security Vulnerabilities and Issues — Desktop & Server Management CVE List

Lucene search

IvantiDesktop & Server Management

5 matches found

CVE•added 2024/10/18 11:15 p.m.•49 views

CVE-2024-29213

Ivanti DSM < version 2024.2 allows authenticated users on the local machine to run code with elevated privileges due to insecure ACL via unspecified attack vector.

7.8CVSS6.8AI score0.00039EPSS

CVE•added 2024/10/18 11:15 p.m.•42 views

CVE-2024-29821

Ivanti DSM < version 2024.2 allows authenticated users on the local machine to run code with elevated privileges due to insecure ACL via unspecified attack vector.

7.8CVSS6.8AI score0.00039EPSS

CVE•added 2024/12/10 7:15 p.m.•39 views

CVE-2024-7572

Insufficient permissions in Ivanti DSM before version 2024.3.5740 allows a local authenticated attacker to delete arbitrary files.

7.1CVSS6.8AI score0.00076EPSS

CVE•added 2023/08/10 8:15 p.m.•38 views

CVE-2023-28129

DSM 2022.2 SU2 and all prior versions allows a local low privileged account to execute arbitrary OS commands as the DSM software installation user.

7.8CVSS7.8AI score0.00197EPSS

CVE•added 2025/07/12 4:15 a.m.•8 views

CVE-2024-38648

A hardcoded secret in Ivanti DSM before 2024.2 allows an authenticated attacker on an adjacent network to decrypt sensitive data including user credentials.

9CVSS8.9AI score0.00041EPSS