CVE-2024-37398
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD
Description
Insufficient validation in Ivanti Secure Access Client before 22.7R4 allows a local authenticated attacker to escalate their privileges.
Affected (5)
Products: Ivanti: Secure Access Client
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 22.7 |
References (1)
Source: support@hackerone.com
Vendor Advisory
Timeline
No history available yet.