Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Ivanti — Vulnerabilities & Security Advisories 363

Browse all 363 CVE security advisories affecting Ivanti. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Ivanti provides enterprise IT service management and endpoint management solutions, primarily facilitating workflow automation and device control for large organizations. The company’s software portfolio has historically been a significant target for attackers, resulting in a substantial record of 358 Common Vulnerabilities and Exposures. These security flaws frequently involve critical classes such as remote code execution, cross-site scripting, and privilege escalation, often stemming from complex integrations within its service management platforms. A notable incident occurred in 2021 when the SambaCry vulnerability allowed unauthenticated remote code execution, compromising thousands of systems globally. This event underscored the risks associated with legacy codebases and insufficient patch management cycles. Consequently, Ivanti has faced intense scrutiny regarding its development practices and incident response capabilities, prompting industry-wide recommendations for immediate isolation and rigorous vulnerability scanning of affected endpoints to mitigate potential data breaches and operational disruptions.

Top products by Ivanti: Avalanche Endpoint Manager Connect Secure EPM Endpoint Manager Mobile Secure Access Client EPMM Workspace Control CSA (Cloud Services Appliance) ICS Cloud Services Application ITSM Wavelink DSM Sentry Desktop and Server Management Neurons for ITSM (On-Premise) MobileIron Core Ivanti Endpoint Manager Secure Access Linux Secure Access Client Windows Automation Desktop & Server Management (DSM) Connect Secure 22.7R2.9 Connect Secure before Virtual Application Delivery ControllerCWE-862 Policy Secure Neurons for ITSM (on-prem) LANDesk Management Suite Security Controls
CVE IDTitleCVSSSeverityPublished
CVE-2024-12058 Ivanti Connect Secure和Ivanti Policy Secure 安全漏洞 — Connect SecureCWE-73 6.8 Medium2025-02-11
CVE-2024-10644 Ivanti Connect Secure 代码注入漏洞 — Connect SecureCWE-94 9.1 Critical2025-02-11
CVE-2025-22467 Ivanti Connect Secure 安全漏洞 — Connect SecureCWE-121 9.9 Critical2025-02-11
CVE-2024-11771 Ivanti CSA 路径遍历漏洞 — Cloud Services ApplicationCWE-22 5.3 Medium2025-02-11
CVE-2024-47908 Ivanti CSA 操作系统命令注入漏洞 — Cloud Services ApplicationCWE-78 9.1 Critical2025-02-11
CVE-2024-13162 Ivanti EPM SQL注入漏洞 — Endpoint ManagerCWE-89 7.2 High2025-01-14
CVE-2024-13163 Ivanti EPM 代码问题漏洞 — Endpoint ManagerCWE-502 7.8 High2025-01-14
CVE-2024-13164 Ivanti EPM 安全漏洞 — Endpoint ManagerCWE-908 7.8 High2025-01-14
CVE-2024-13165 Ivanti EPM 缓冲区错误漏洞 — Endpoint ManagerCWE-787 7.5 High2025-01-14
CVE-2024-13166 Ivanti EPM 缓冲区错误漏洞 — Endpoint ManagerCWE-787 7.5 High2025-01-14
CVE-2024-13167 Ivanti EPM 缓冲区错误漏洞 — Endpoint ManagerCWE-787 7.5 High2025-01-14
CVE-2024-13168 Ivanti EPM 缓冲区错误漏洞 — Endpoint ManagerCWE-787 7.5 High2025-01-14
CVE-2024-13169 Ivanti EPM 安全漏洞 — Endpoint ManagerCWE-125 7.8 High2025-01-14
CVE-2024-13170 Ivanti EPM 缓冲区错误漏洞 — Endpoint ManagerCWE-787 7.5 High2025-01-14
CVE-2024-13171 Ivanti EPM 代码问题漏洞 — Endpoint ManagerCWE-434 7.8 High2025-01-14
CVE-2024-13172 Ivanti EPM 数据伪造问题漏洞 — Endpoint ManagerCWE-347 7.8 High2025-01-14
CVE-2024-13158 Ivanti EPM 安全漏洞 — Endpoint ManagerCWE-426 7.2 High2025-01-14
CVE-2024-13159 Ivanti EPM 安全漏洞 — Endpoint ManagerCWE-36 9.8 Critical2025-01-14
CVE-2024-13160 Ivanti EPM 安全漏洞 — Endpoint ManagerCWE-36 9.8 Critical2025-01-14
CVE-2024-13161 Ivanti EPM 安全漏洞 — Endpoint ManagerCWE-36 9.8 Critical2025-01-14
CVE-2024-10811 Ivanti EPM 安全漏洞 — Endpoint ManagerCWE-36 9.8 Critical2025-01-14
CVE-2024-13181 Ivanti Avalanche 安全漏洞 — AvalancheCWE-22 7.3 High2025-01-14
CVE-2024-13180 Ivanti Avalanche 路径遍历漏洞 — AvalancheCWE-22 7.5 High2025-01-14
CVE-2024-13179 Ivanti Avalanche 安全漏洞 — AvalancheCWE-22 7.3 High2025-01-14
CVE-2024-10630 Ivanti Application Control 安全漏洞 — Application Control EngineCWE-366 7.8 High2025-01-14
CVE-2025-0283 Ivanti多款产品 安全漏洞 — Connect SecureCWE-121 7.0 High2025-01-08
CVE-2025-0282 Ivanti多款产品 安全漏洞 — Connect SecureCWE-121 9.0 Critical2025-01-08
CVE-2024-37401 Ivanti Connect Secure 安全漏洞 — Connect Secure 7.5 -2024-12-11
CVE-2024-37377 Ivanti Connect Secure 安全漏洞 — Connect Secure 7.5 -2024-12-11
CVE-2024-11598 Ivanti Application Control 安全漏洞 — Application ControlCWE-276 7.8 High2024-12-11

This page lists every published CVE security advisory associated with Ivanti. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.