Show filters
423 Total Results
Displaying 41-50 of 423
Sort by:
Attacker Value
Unknown
CVE-2024-13168
Disclosure Date: January 14, 2025 (last updated January 15, 2025)
An out-of-bounds write in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to cause a denial of service.
0
Attacker Value
Unknown
CVE-2024-13167
Disclosure Date: January 14, 2025 (last updated January 15, 2025)
An out-of-bounds write in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to cause a denial of service.
0
Attacker Value
Unknown
CVE-2024-13166
Disclosure Date: January 14, 2025 (last updated January 15, 2025)
An out-of-bounds write in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to cause a denial of service.
0
Attacker Value
Unknown
CVE-2024-13165
Disclosure Date: January 14, 2025 (last updated January 15, 2025)
An out-of-bounds write in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to cause a denial of service.
0
Attacker Value
Unknown
CVE-2024-13164
Disclosure Date: January 14, 2025 (last updated January 15, 2025)
An uninitialized resource in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a local authenticated attacker to escalate their privileges.
0
Attacker Value
Unknown
CVE-2024-13163
Disclosure Date: January 14, 2025 (last updated January 15, 2025)
Deserialization of untrusted data in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to achieve remote code execution. Local user interaction is required.
0
Attacker Value
Unknown
CVE-2024-13162
Disclosure Date: January 14, 2025 (last updated January 15, 2025)
SQL injection in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote authenticated attacker with admin privileges to achieve remote code execution. This CVE addresses incomplete fixes from CVE-2024-32848.
0
Attacker Value
Unknown
CVE-2024-13161
Disclosure Date: January 14, 2025 (last updated February 23, 2025)
Absolute path traversal in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to leak sensitive information.
0
Attacker Value
Unknown
CVE-2024-13160
Disclosure Date: January 14, 2025 (last updated February 23, 2025)
Absolute path traversal in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to leak sensitive information.
0
Attacker Value
Unknown
CVE-2024-13159
Disclosure Date: January 14, 2025 (last updated February 23, 2025)
Absolute path traversal in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to leak sensitive information.
0
