CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-9167

Under specific circumstances, insecure permissions in Ivanti Velocity License Server before version 5.2 allows a local authenticated attacker to achieve local privilege escalation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 18.3%

CVSS Severity

CVSS v3 Score 7.8

References

https://forums.ivanti.com/s/article/Security-Advisory-Velocity-License-Server-CVE-2024-9167

Products affected by CVE-2024-9167

Ivanti » Velocity License Server » Version: Any

cpe:2.3:a:ivanti:velocity_license_server:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-9167

Products

Pricing

Contact Us