GCVE - cpe:2.3:a:ivanti:desktop_\&_server

Approved changes feed: RSS · Atom

cpe:2.3:a:ivanti:desktop_\&_server_management:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Ivanti (`40b984ad-e54c-5e1b-9aa1-2a4cd4d61129`)
Product	Desktop & Server Management (`ae7158d6-c847-5c60-b10a-9b0b0499d99b`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2026-3483`	vulnerable	2026-06-03 15:23:32.746426	Details available HIGH (7.8) An exposed dangerous method in Ivanti DSM before version 2026.1.1 allows a local authenticated attacker to escalate their privileges. Published: 2026-03-10T14:19:25.340Z Updated: 2026-03-11T03:56:43.597Z Open on db.gcve.eu Reference links https://hub.ivanti.com/s/article/Security-Advisory-Ivanti-DSM-CVE-2026-3483?language=en_US	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-7572`	vulnerable	2026-06-03 14:58:06.403218	Details available HIGH (7.1) Insufficient permissions in Ivanti DSM before version 2024.3.5740 allows a local authenticated attacker to delete arbitrary files. Published: 2024-12-10T18:53:39.709Z Updated: 2024-12-10T20:13:13.330Z Open on db.gcve.eu Reference links https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Desktop-and-Server-Management-DSM-CVE-2024-7572	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-38648`	vulnerable	2026-06-03 14:56:19.202997	Details available CRITICAL (9) A hardcoded secret in Ivanti DSM before 2024.2 allows an authenticated attacker on an adjacent network to decrypt sensitive data including user credentials. Published: 2025-07-12T03:30:40.276Z Updated: 2025-07-14T16:12:29.434Z Open on db.gcve.eu Reference links https://forums.ivanti.com/s/article/SA-2024-07-12-CVE-2024-38648	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-29821`	vulnerable	2026-06-03 14:55:27.508928	Details available HIGH (7.8) Ivanti DSM < version 2024.2 allows authenticated users on the local machine to run code with elevated privileges due to insecure ACL via unspecified attack vector. Published: 2024-10-18T23:06:49.553Z Updated: 2024-10-21T17:17:21.915Z Open on db.gcve.eu Reference links https://forums.ivanti.com/s/article/SA-2024-07-12-CVE-2024-29821	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-29213`	vulnerable	2026-06-03 14:55:27.111574	Details available HIGH (7.8) Ivanti DSM < version 2024.2 allows authenticated users on the local machine to run code with elevated privileges due to insecure ACL via unspecified attack vector. Published: 2024-10-18T23:06:49.569Z Updated: 2024-10-21T17:16:00.310Z Open on db.gcve.eu Reference links https://forums.ivanti.com/s/article/SA-2024-07-12-CVE-2024-29213	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-28129`	vulnerable	2026-06-03 14:51:08.058787	Details available DSM 2022.2 SU2 and all prior versions allows a local low privileged account to execute arbitrary OS commands as the DSM software installation user. Published: 2023-08-10T19:07:44.291Z Updated: 2024-10-09T19:31:11.852Z Open on db.gcve.eu Reference links https://forums.ivanti.com/s/article/SA-2023-07-26-CVE-2023-28129	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Desktop & Server Management

PURL mappings

Vulnerability references

Contribute