Vulnerability Details CVE-2024-9845
Under specific circumstances, insecure permissions in Ivanti Automation before version 2024.4.0.1 allows a local authenticated attacker to achieve local privilege escalation.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 15.2%
CVSS Severity
CVSS v3 Score 7.8
References
Products affected by CVE-2024-9845
-
cpe:2.3:a:ivanti:automation:-
-
cpe:2.3:a:ivanti:automation:2020.0
-
cpe:2.3:a:ivanti:automation:2020.1
-
cpe:2.3:a:ivanti:automation:2020.1.1
-
cpe:2.3:a:ivanti:automation:2020.2
-
cpe:2.3:a:ivanti:automation:2020.2.1
-
cpe:2.3:a:ivanti:automation:2020.2.2
-
cpe:2.3:a:ivanti:automation:2020.3
-
cpe:2.3:a:ivanti:automation:2021.1
-
cpe:2.3:a:ivanti:automation:2021.2
-
cpe:2.3:a:ivanti:automation:2021.3
-
cpe:2.3:a:ivanti:automation:2021.3.1
-
cpe:2.3:a:ivanti:automation:2021.4
-
cpe:2.3:a:ivanti:automation:2022.1
-
cpe:2.3:a:ivanti:automation:2022.2
-
cpe:2.3:a:ivanti:automation:2022.2.1
-
cpe:2.3:a:ivanti:automation:2022.2.2
-
cpe:2.3:a:ivanti:automation:2022.3
-
cpe:2.3:a:ivanti:automation:2022.3.1
-
cpe:2.3:a:ivanti:automation:2022.4
-
cpe:2.3:a:ivanti:automation:2023.1
-
cpe:2.3:a:ivanti:automation:2023.2.0.1
-
cpe:2.3:a:ivanti:automation:2023.3
-
cpe:2.3:a:ivanti:automation:2023.4
-
cpe:2.3:a:ivanti:automation:2024.4