PT-2024-39081 · Ivanti · Ivanti Sentry
Published
2024-12-10
·
Updated
2024-12-11
·
CVE-2024-8540
CVSS v3.1
8.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
Ivanti Sentry versions prior to 9.20.2
Ivanti Sentry versions prior to 10.0.2
Ivanti Sentry versions prior to 10.1.0
Description:
The issue allows a local authenticated attacker to modify sensitive application components due to insecure permissions.
Recommendations:
For versions prior to 9.20.2, update to version 9.20.2 or later.
For versions prior to 10.0.2, update to version 10.0.2 or later.
For versions prior to 10.1.0, update to version 10.1.0 or later.
Fix
Incorrect Permission
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ivanti Sentry