Show filters
9,280 Total Results
Displaying 251-260 of 9,280
Sort by:
Attacker Value
Unknown
CVE-2024-13165
Disclosure Date: January 14, 2025 (last updated January 15, 2025)
An out-of-bounds write in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to cause a denial of service.
0
Attacker Value
Unknown
CVE-2024-13164
Disclosure Date: January 14, 2025 (last updated January 15, 2025)
An uninitialized resource in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a local authenticated attacker to escalate their privileges.
0
Attacker Value
Unknown
CVE-2024-13163
Disclosure Date: January 14, 2025 (last updated January 15, 2025)
Deserialization of untrusted data in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to achieve remote code execution. Local user interaction is required.
0
Attacker Value
Unknown
CVE-2024-13162
Disclosure Date: January 14, 2025 (last updated January 15, 2025)
SQL injection in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote authenticated attacker with admin privileges to achieve remote code execution. This CVE addresses incomplete fixes from CVE-2024-32848.
0
Attacker Value
Unknown
CVE-2024-13161
Disclosure Date: January 14, 2025 (last updated February 23, 2025)
Absolute path traversal in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to leak sensitive information.
0
Attacker Value
Unknown
CVE-2024-13160
Disclosure Date: January 14, 2025 (last updated February 23, 2025)
Absolute path traversal in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to leak sensitive information.
0
Attacker Value
Unknown
CVE-2024-13159
Disclosure Date: January 14, 2025 (last updated February 23, 2025)
Absolute path traversal in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to leak sensitive information.
0
Attacker Value
Unknown
CVE-2024-13158
Disclosure Date: January 14, 2025 (last updated January 15, 2025)
An unbounded resource search path in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote authenticated attacker with admin privileges to achieve remote code execution.
0
Attacker Value
Unknown
CVE-2024-10811
Disclosure Date: January 14, 2025 (last updated February 23, 2025)
Absolute path traversal in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to leak sensitive information.
0
Attacker Value
Unknown
CVE-2024-50566
Disclosure Date: January 14, 2025 (last updated February 04, 2025)
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiManager versions 7.6.0 through 7.6.1, versions 7.4.5 through 7.4.0, and versions 7.2.1 through 7.2.8, FortiManager Cloud versions 7.6.0 through 7.6.1, versions 7.4.0 through 7.4.4, and versions 7.2.2 through 7.2.7 may allow an authenticated remote attacker to execute unauthorized code via FGFM crafted requests.
0
