CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-9381

Path traversal in Ivanti CSA before version 5.0.2 allows a remote authenticated attacker with admin privileges to bypass restrictions.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.093

EPSS Ranking 92.4%

CVSS Severity

CVSS v3 Score 7.2

References

https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-CSA-Cloud-Services-Appliance-CVE-2024-9379-CVE-2024-9380-CVE-2024-9381

Products affected by CVE-2024-9381

Ivanti » Endpoint Manager Cloud Services Appliance » Version: 4.5

cpe:2.3:a:ivanti:endpoint_manager_cloud_services_appliance:4.5
Ivanti » Endpoint Manager Cloud Services Appliance » Version: 4.6

cpe:2.3:a:ivanti:endpoint_manager_cloud_services_appliance:4.6

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved