Known Vulnerabilities for products from Ivanti
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Ivanti".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-22572 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.8 - HIGH | 2022-04-11 | 2023-08-08 |
| CVE-2022-22571 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 4.8 - MEDIUM | 2022-04-11 | 2022-04-15 |
| CVE-2022-21828 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.2 - HIGH | 2022-03-04 | 2022-03-21 |
| CVE-2022-21823 | A insecure storage of sensitive information vulnerability exists in Ivanti Workspace Control <2021.2 (10.7.30.0) that could a... | 5.5 - MEDIUM | 2022-01-10 | 2022-01-14 |
| CVE-2021-42133 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.1 - HIGH | 2021-12-07 | 2021-12-09 |
| CVE-2021-42132 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.8 - HIGH | 2021-12-07 | 2021-12-08 |
| CVE-2021-42131 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.8 - HIGH | 2021-12-07 | 2021-12-08 |
| CVE-2021-42130 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.8 - HIGH | 2021-12-07 | 2021-12-08 |
| CVE-2021-42129 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.8 - HIGH | 2021-12-07 | 2021-12-08 |
| CVE-2021-42128 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2021-12-07 | 2022-08-09 |
| CVE-2021-42127 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2021-12-07 | 2021-12-08 |
| CVE-2021-42126 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.8 - HIGH | 2021-12-07 | 2022-08-09 |
| CVE-2021-42125 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.8 - HIGH | 2021-12-07 | 2021-12-08 |
| CVE-2021-42124 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.8 - HIGH | 2021-12-07 | 2022-08-09 |
| CVE-2021-38560 | Ivanti Service Manager 2021.1 allows reflected XSS via the appName parameter associated with ConfigDB calls, such as in Reloc... | 6.1 - MEDIUM | 2022-02-01 | 2022-02-05 |
| CVE-2021-36235 | An issue was discovered in Ivanti Workspace Control before 10.6.30.0. A locally authenticated user with low privileges can by... | 7.8 - HIGH | 2021-09-01 | 2021-09-08 |
| CVE-2021-30497 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-04-06 | 2022-04-13 |
| CVE-2021-22962 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.1 - CRITICAL | 2023-12-19 | 2023-12-28 |
| CVE-2021-22908 | A buffer overflow vulnerability exists in Windows File Resource Profiles in 9.X allows a remote authenticated user with privi... | 8.8 - HIGH | 2021-05-27 | 2024-01-13 |
| CVE-2021-22900 | A vulnerability allowed multiple unrestricted uploads in Pulse Connect Secure before 9.1R11.4 that could lead to an authentic... | 7.2 - HIGH | 2021-05-27 | 2024-01-13 |
Known software with vulnerabilities from Ivanti
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Ivanti | Avalanche | 4.6 |
| Application | Ivanti | Desktopampserver Management | 2019.1 |
| Application | Ivanti | Dsm Netinst | 5.1 |
| Application | Ivanti | Endpoint Manager | 2016.4 |
| Application | Ivanti | Landesk Management Suite | 10.0.1.168 |
| Application | Ivanti | Service Manager Heat Remote Control | 7.4 |
| Application | Ivanti | Workspace Control | 10.1.0.0 |