automation (ivanti) — Vulnerabilities

Signals

Monitoring NVD, CISA KEV, EPSS and the Dragons Community ransomware tracker in near-real timeMonitoring NVD, CISA KEV, EPSS and the Dragons Community ransomware tracker in near-real time

Vendors · ivanti · automation

automation

· 2 CVEsivanti · 2 known vulnerabilities

Total

Critical

High

Medium

CISA KEV

CVE-2024-9845HIGH 7.8

Dec 11, 2024

Under specific circumstances, insecure permissions in Ivanti Automation before version 2024.4.0.1 allows a local authenticated attacker to achieve local privilege escalation.

CVE-2022-44569HIGH 7.8

Nov 3, 2023

A locally authenticated attacker with low privileges can bypass authentication due to insecure inter-process communication.

All ivanti products All Vendors CVE Database KEV Catalog