Lucene search
IvantiSecurity Controls*
3 matches found
CVE-2024-10251
Under specific circumstances, insecure permissions in Ivanti Security Controls before version 2024.4.1 allows a local authenticated attacker to achieve local privilege escalation.
7.8CVSS7.4AI score0.00055EPSS
CVE-2024-10256
Insufficient permissions in Ivanti Patch SDK before version 9.7.703 allows a local authenticated attacker to delete arbitrary files.
7.1CVSS6.8AI score0.00075EPSS
CVE-2024-10630
A race condition in Ivanti Application Control Engine before version 10.14.4.0 allows a local authenticated attacker to bypass the application blocking functionality.
7.8CVSS7.4AI score0.0008EPSS