Ivanti Secure Access Client 22.7
Approved changes feed: RSS · Atom
cpe:2.3:a:ivanti:secure_access_client:22.7:-:*:*:*:*:*:*
part: a version: 22.7 update: -
| Vendor | Ivanti (40b984ad-e54c-5e1b-9aa1-2a4cd4d61129) |
|---|---|
| Product | Secure Access Client (74a505ac-c87c-5ff7-baac-94d1fb329991) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-22454 |
vulnerable | 2026-06-03 14:59:39.977181 |
Details available
HIGH (7.8)
Insufficiently restrictive permissions in Ivanti Secure Access Client before 22.7R4 allows a local authenticated attacker to escalate their privileges.
Published: 2025-03-11T14:11:30.497Z
Updated: 2026-02-26T19:09:41.856Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9843 |
vulnerable | 2026-06-03 14:58:22.714962 |
Details available
MEDIUM (5)
A buffer over-read in Ivanti Secure Access Client before 22.7R4 allows a local unauthenticated attacker to cause a denial of service.
Published: 2024-11-12T16:13:09.060Z
Updated: 2024-11-12T17:21:52.651Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9842 |
vulnerable | 2026-06-03 14:58:22.712512 |
Details available
HIGH (7.3)
Incorrect permissions in Ivanti Secure Access Client before version 22.7R4 allows a local authenticated attacker to create arbitrary folders.
Published: 2024-11-12T16:12:12.164Z
Updated: 2024-11-12T18:24:53.695Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-8539 |
vulnerable | 2026-06-03 14:58:18.690843 |
Details available
HIGH (7.1)
Improper authorization in Ivanti Secure Access Client before version 22.7R3 allows a local authenticated attacker to modify sensitive configuration files.
Published: 2024-11-12T16:11:07.141Z
Updated: 2024-11-12T18:26:45.187Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-7571 |
vulnerable | 2026-06-03 14:58:06.397032 |
Details available
HIGH (7.8)
Incorrect permissions in Ivanti Secure Access Client before 22.7R4 allows a local authenticated attacker to escalate their privileges.
Published: 2024-11-12T16:14:02.778Z
Updated: 2024-11-19T17:15:02.280Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38654 |
vulnerable | 2026-06-03 14:56:19.231282 |
Details available
MEDIUM (4.4)
Improper bounds checking in Ivanti Secure Access Client before version 22.7R3 allows a local authenticated attacker with admin privileges to cause a denial of service.
Published: 2024-11-13T01:54:45.470Z
Updated: 2024-11-13T17:01:06.962Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-37398 |
vulnerable | 2026-06-03 14:56:06.483894 |
Details available
HIGH (7.8)
Insufficient validation in Ivanti Secure Access Client before 22.7R4 allows a local authenticated attacker to escalate their privileges.
Published: 2024-11-13T01:54:45.406Z
Updated: 2025-03-13T17:50:08.929Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-29211 |
vulnerable | 2026-06-03 14:55:27.103791 |
Details available
HIGH (7.1)
A race condition in Ivanti Secure Access Client before version 22.7R4 allows a local authenticated attacker to modify sensitive configuration files.
Published: 2024-11-13T01:54:45.547Z
Updated: 2024-11-13T16:49:48.676Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.