CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-7570

Improper certificate validation in Ivanti ITSM on-prem and Neurons for ITSM Versions 2023.4 and earlier allows a remote attacker in a MITM position to craft a token that would allow access to ITSM as any user.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 52.1%

CVSS Severity

CVSS v3 Score 8.3

References

https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Neurons-for-ITSM-CVE-2024-7569-CVE-2024-7570

Products affected by CVE-2024-7570

Ivanti » Neurons For Itsm » Version: 2023.2

cpe:2.3:a:ivanti:neurons_for_itsm:2023.2
Ivanti » Neurons For Itsm » Version: 2023.3

cpe:2.3:a:ivanti:neurons_for_itsm:2023.3
Ivanti » Neurons For Itsm » Version: 2023.4

cpe:2.3:a:ivanti:neurons_for_itsm:2023.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-7570

Products

Pricing

Contact Us