Vulnerability Details CVE-2025-22455
A hardcoded key in Ivanti Workspace Control before version 10.19.0.0 allows a local authenticated attacker to decrypt stored SQL credentials.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 9.0%
CVSS Severity
CVSS v3 Score 8.8
Products affected by CVE-2025-22455
-
cpe:2.3:a:ivanti:workspace_control:-
-
cpe:2.3:a:ivanti:workspace_control:10.1.0.0
-
cpe:2.3:a:ivanti:workspace_control:10.18.30.0
-
cpe:2.3:a:ivanti:workspace_control:10.18.40.0
-
cpe:2.3:a:ivanti:workspace_control:10.18.99.0
-
cpe:2.3:a:ivanti:workspace_control:10.2.0.0
-
cpe:2.3:a:ivanti:workspace_control:10.2.0.1
-
cpe:2.3:a:ivanti:workspace_control:10.2.500.1
-
cpe:2.3:a:ivanti:workspace_control:10.2.600.1
-
cpe:2.3:a:ivanti:workspace_control:10.2.700.1
-
cpe:2.3:a:ivanti:workspace_control:10.2.800.0
-
cpe:2.3:a:ivanti:workspace_control:10.2.900.1
-
cpe:2.3:a:ivanti:workspace_control:10.2.950.0
-
cpe:2.3:a:ivanti:workspace_control:10.3.0.0
-
cpe:2.3:a:ivanti:workspace_control:10.3.10.0
-
cpe:2.3:a:ivanti:workspace_control:10.3.110.0
-
cpe:2.3:a:ivanti:workspace_control:10.3.180.0
-
cpe:2.3:a:ivanti:workspace_control:10.3.20.0
-
cpe:2.3:a:ivanti:workspace_control:10.3.30.0
-
cpe:2.3:a:ivanti:workspace_control:10.3.40.0
-
cpe:2.3:a:ivanti:workspace_control:10.3.50.0
-
cpe:2.3:a:ivanti:workspace_control:10.3.90.0
-
cpe:2.3:a:ivanti:workspace_control:10.4.30.0
-
cpe:2.3:a:ivanti:workspace_control:10.4.40.0
-
cpe:2.3:a:ivanti:workspace_control:10.4.50.0
-
cpe:2.3:a:ivanti:workspace_control:10.6.30.0
-
cpe:2.3:a:ivanti:workspace_control:10.7.30.0