exploitDog

GHSA-9582-7xgq-xhq8

Опубликовано: 12 авг. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

Missing authorization in the admin console of Ivanti Virtual Application Delivery Controller before version 22.9 allows a remote authenticated attacker to take over admin accounts by resetting the password

Missing authorization in the admin console of Ivanti Virtual Application Delivery Controller before version 22.9 allows a remote authenticated attacker to take over admin accounts by resetting the password

Ссылки

EPSS

Процентиль: 48%

0.00248

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-862

Связанные уязвимости

CVE-2025-8310

CVSS3: 6.5

nvd

6 месяцев назад

Missing authorization in the admin console of Ivanti Virtual Application Delivery Controller before version 22.9 allows a remote authenticated attacker to take over admin accounts by resetting the password

EPSS

Процентиль: 48%

0.00248

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-862