7.5

CVSS3.1

CVE-2024-13170 -

An out-of-bounds write in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to cause a denial of service.

๐Ÿ“… Published: Jan. 14, 2025, 5:17 p.m. ๐Ÿ”„ Last Modified: July 13, 2025, 11:23 a.m.

7.8

CVSS3.1

CVE-2024-13171 -

Insufficient filename validation in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to achieve remote code execution. Local user interaction is required.

๐Ÿ“… Published: Jan. 14, 2025, 5:16 p.m. ๐Ÿ”„ Last Modified: Feb. 26, 2026, 7:09 p.m.

7.8

CVSS3.1

CVE-2024-13172 -

Improper signature verification in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to achieve remote code execution. Local user interaction is required.

๐Ÿ“… Published: Jan. 14, 2025, 5:16 p.m. ๐Ÿ”„ Last Modified: Feb. 26, 2026, 7:09 p.m.

7.2

CVSS3.1

CVE-2024-13158 -

An unbounded resource search path in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote authenticated attacker with admin privileges to achieve remote code execution.

๐Ÿ“… Published: Jan. 14, 2025, 5:13 p.m. ๐Ÿ”„ Last Modified: Feb. 26, 2026, 7:09 p.m.

9.8

CVSS3.1

CVE-2024-13159 -

Absolute path traversal in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to leak sensitive information.

๐Ÿ“… Published: Jan. 14, 2025, 5:12 p.m. ๐Ÿ”„ Last Modified: Oct. 24, 2025, 2:48 p.m.

9.8

CVSS3.1

CVE-2024-13160 -

Absolute path traversal in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to leak sensitive information.

๐Ÿ“… Published: Jan. 14, 2025, 5:12 p.m. ๐Ÿ”„ Last Modified: Oct. 24, 2025, 2:48 p.m.

9.8

CVSS3.1

CVE-2024-13161 -

Absolute path traversal in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to leak sensitive information.

๐Ÿ“… Published: Jan. 14, 2025, 5:11 p.m. ๐Ÿ”„ Last Modified: Oct. 24, 2025, 2:48 p.m.

5.1

CVSS4.0

CVE-2025-0464 - SourceCodester Task Reminder System Maintenance Section cross site scripting

A vulnerability was found in SourceCodester Task Reminder System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Maintenance Section. The manipulation of the argument System Name leads to cross site scripting. The attack can be lโ€ฆ

๐Ÿ“… Published: Jan. 14, 2025, 5 p.m. ๐Ÿ”„ Last Modified: Feb. 11, 2025, 2:59 p.m.

5.3

CVSS4.0

CVE-2025-0463 - Shanghai Lingdang Information Technology Lingdang CRM index.php unrestricted upload

A vulnerability was found in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.0.0. It has been classified as critical. Affected is an unknown function of the file /crm/weixinmp/index.php?userid=123&module=Users&usid=1&action=UsersAjax&minipro_const_type=1&related_module=Singin. The mโ€ฆ

๐Ÿ“… Published: Jan. 14, 2025, 5 p.m. ๐Ÿ”„ Last Modified: Aug. 28, 2025, 10:57 a.m.

9.8

CVSS3.1

CVE-2024-10811 -

Absolute path traversal in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to leak sensitive information.

๐Ÿ“… Published: Jan. 14, 2025, 4:59 p.m. ๐Ÿ”„ Last Modified: Feb. 26, 2026, 7:09 p.m.
Total resulsts: 343928
Page 6612 of 34,393
ยซ previous page ยป next page
Filters