Ivanti
Operational audit scripts and mitigation intelligence for 209 known Ivanti vulnerabilities.
CVE-2024-11639
Target: Ivanti Cloud Services Application - Admin Web Console
CVE-2023-46808
Target: Ivanti Neurons for ITSM - File Upload Component
CVE-2025-22467
Target: Ivanti Connect Secure - Connect Secure
CVE-2026-1281
Actively ExploitedTarget: Ivanti Endpoint Manager Mobile - EPMM
CVE-2026-1340
Target: Ivanti Endpoint Manager - Mobile
CVE-2023-35082
Actively ExploitedTarget: Ivanti EPMM - MobileIron Core
CVE-2023-32567
Target: Ivanti Avalanche - decodeToMap
CVE-2023-28324
Target: Ivanti Endpoint Manager - Core
CVE-2023-38035
Actively ExploitedTarget: Ivanti MobileIron Sentry - MICS Admin Portal
CVE-2024-29204
Target: Ivanti Avalanche - WLAvalancheService
CVE-2024-10811
Target: Ivanti EPM - Endpoint Manager
CVE-2024-13160
Actively ExploitedTarget: Ivanti EPM - Endpoint Manager
CVE-2024-50330
Target: Ivanti Endpoint Manager - Core
CVE-2024-24996
Target: Ivanti Avalanche - WLInfoRailService
CVE-2024-22061
Target: Ivanti Avalanche - WLInfoRailService
CVE-2025-22462
Target: Ivanti Neurons for ITSM - Authentication Module
CVE-2024-29847
Target: Ivanti EPM - Agent Portal
CVE-2023-38036
Target: Ivanti Avalanche - Manager
CVE-2024-13159
Actively ExploitedTarget: Ivanti EPM - Endpoint Manager
CVE-2023-35078
Actively ExploitedTarget: Ivanti EPMM - API
CVE-2023-35084
Target: Ivanti Endpoint Manager - Core Server
CVE-2024-21894
Target: Ivanti Connect Secure - IPSec component
CVE-2024-13161
Actively ExploitedTarget: Ivanti EPM - Endpoint Manager
CVE-2024-7593
Actively ExploitedTarget: Ivanti vTM - Admin Panel
CVE-2024-7569
Target: Ivanti Neurons for ITSM - ITSM Component
CVE-2025-10573
Target: Ivanti Endpoint Manager - Web UI
CVE-2024-8963
Actively ExploitedTarget: Ivanti CSA - Cloud Services Appliance
CVE-2024-11634
Target: Ivanti Connect Secure - Web UI
CVE-2024-11007
Target: Ivanti Connect Secure - Web UI
CVE-2024-38652
Target: Ivanti Avalanche - Skin Management
CVE-2024-11773
Target: Ivanti CSA - Admin Web Console
CVE-2024-11005
Target: Ivanti Connect Secure - Web UI
CVE-2024-11006
Target: Ivanti Connect Secure - Web UI
CVE-2024-11772
Target: Ivanti CSA - Admin Web Console
CVE-2024-11633
Target: Ivanti Connect Secure - Admin Interface
CVE-2024-47908
Target: Ivanti Cloud Services Application - Admin Web Console
CVE-2024-10644
Target: Ivanti Connect Secure - Web Interface
CVE-2024-21887
Actively ExploitedTarget: Ivanti Connect Secure - Web Components
CVE-2024-38656
Target: Ivanti Connect Secure - Web Interface
CVE-2025-22457
Actively ExploitedTarget: Ivanti Connect Secure - Gateway
CVE-2025-0282
Actively ExploitedTarget: Ivanti Connect Secure - Gateway
CVE-2025-55145
Target: Ivanti Connect Secure - Gateway
CVE-2025-13659
Target: Ivanti Endpoint Manager - Server
CVE-2024-37404
Target: Ivanti Connect Secure - Admin Portal
CVE-2025-55142
Target: Ivanti Connect Secure - Authentication Module
CVE-2024-44103
Target: Ivanti Workspace Control - Management Console
CVE-2024-21888
Target: Ivanti Connect Secure - Web Component
CVE-2025-9713
Target: Ivanti Endpoint Manager - EPM
CVE-2025-9712
Target: Ivanti Endpoint Manager - Endpoint Manager
CVE-2024-44104
Target: Ivanti Workspace Control - Management Console
CVE-2025-55141
Target: Ivanti Connect Secure - Authentication Module
CVE-2025-5353
Target: Ivanti Workspace Control - Core
CVE-2025-22455
Target: Ivanti Workspace Control - Core
CVE-2024-29827
Target: Ivanti EPM - Core server
CVE-2024-29826
Target: Ivanti EPM - Core server
CVE-2024-9420
Target: Ivanti Connect Secure - Ivanti Policy Secure
CVE-2024-29825
Target: Ivanti EPM - Core server
CVE-2024-29824
Actively ExploitedTarget: Ivanti EPM - Core Server
CVE-2024-23534
Target: Ivanti Avalanche - Web Component
CVE-2024-23535
Target: Ivanti Avalanche - Web Component
CVE-2024-24992
Target: Ivanti Avalanche - Web Component
CVE-2024-29822
Target: Ivanti EPM - Core server
CVE-2024-7612
Target: Ivanti EPMM - Endpoint Manager
CVE-2025-55147
Target: Ivanti Connect Secure - Web UI
CVE-2024-44106
Target: Ivanti Workspace Control - Management Console
CVE-2024-24994
Target: Ivanti Avalanche - Web Component
CVE-2024-8540
Target: Ivanti Sentry - Application Components
CVE-2025-9872
Target: Ivanti Endpoint Manager - Endpoint Manager
CVE-2024-24997
Target: Ivanti Avalanche - Web Component
CVE-2024-24998
Target: Ivanti Avalanche - Web Component
CVE-2024-24999
Target: Ivanti Avalanche - Web Component
CVE-2024-25000
Target: Ivanti Avalanche - Web Component
CVE-2024-27975
Target: Ivanti Avalanche - WLAvalancheService
CVE-2024-27976
Target: Ivanti Avalanche - Web Component
CVE-2024-29823
Target: Ivanti EPM - Core server
CVE-2024-50329
Target: Ivanti Endpoint Manager - Core
CVE-2024-44107
Target: Ivanti Workspace Control - Management Console
CVE-2026-1603
Actively ExploitedTarget: Ivanti Endpoint Manager - Core
CVE-2025-6995
Target: Ivanti Endpoint Manager - Agent
CVE-2025-6996
Target: Ivanti Endpoint Manager - Agent
CVE-2024-7570
Target: Ivanti Neurons for ITSM - ITSM Component
CVE-2024-22024
Target: Ivanti Connect Secure - SAML Component
CVE-2024-37397
Target: Ivanti EPM - Provisioning Web Service
CVE-2024-44105
Target: Ivanti Workspace Control - Management Console
CVE-2024-21893
Actively ExploitedTarget: Ivanti Connect Secure - SAML Component
CVE-2024-22053
Target: Ivanti Connect Secure - IPSec component
CVE-2025-22466
Target: Ivanti Endpoint Manager - Web UI
CVE-2024-27977
Target: Ivanti Avalanche - Web Component
CVE-2024-29846
Target: Ivanti EPM - Core server
CVE-2024-37381
Target: Ivanti EPM - Core Server
CVE-2024-29830
Target: Ivanti EPM - Core server
CVE-2024-29829
Target: Ivanti EPM - Core server
CVE-2024-29828
Target: Ivanti EPM - Core server
CVE-2025-22454
Target: Ivanti Secure Access Client
CVE-2024-39709
Target: Ivanti Connect Secure - Ivanti Policy Secure
CVE-2024-47906
Target: Ivanti Connect Secure - Ivanti Policy Secure
CVE-2024-50322
Target: Ivanti Endpoint Manager - Core
CVE-2024-50323
Target: Ivanti Endpoint Manager - Core
CVE-2024-37398
Target: Ivanti Secure Access Client
CVE-2024-34787
Target: Ivanti Endpoint Manager - Core
CVE-2024-7571
Target: Ivanti Secure Access Client
CVE-2026-3483
Target: Ivanti DSM
CVE-2024-13172
Target: Ivanti EPM - Core
CVE-2025-11622
Target: Ivanti Endpoint Manager - Core
CVE-2024-13171
Target: Ivanti EPM - Core
CVE-2024-13169
Target: Ivanti EPM - Core
CVE-2024-13164
Target: Ivanti EPM - Core
CVE-2024-13163
Target: Ivanti EPM - Core
CVE-2025-13662
Target: Ivanti Endpoint Manager - Patch Management Component
CVE-2024-9167
Target: Ivanti Velocity - License Server
CVE-2025-22458
Target: Ivanti Endpoint Manager - Core
CVE-2025-22460
Target: Ivanti Cloud Services - Application
CVE-2024-8012
Target: Ivanti Workspace Control - Message Broker Service
CVE-2024-10630
Target: Ivanti Application Control - Engine
CVE-2024-8191
Target: Ivanti EPM - Management Console
CVE-2024-9845
Target: Ivanti Automation
CVE-2024-8496
Target: Ivanti Workspace Control - Core
CVE-2024-11598
Target: Ivanti Application Control
CVE-2024-11597
Target: Ivanti Performance Manager - Core
CVE-2024-10251
Target: Ivanti Security Controls - Security Controls
CVE-2025-55148
Target: Ivanti Connect Secure - Admin Interface
CVE-2024-23529
Target: Ivanti Avalanche - WLAvalancheService
CVE-2024-47008
Target: Ivanti Avalanche - Server
CVE-2025-5456
Target: Ivanti Connect Secure - Gateway
CVE-2025-5462
Target: Ivanti Connect Secure - Gateway
CVE-2024-23526
Target: Ivanti Avalanche - WLAvalancheService
CVE-2024-23528
Target: Ivanti Avalanche - WLAvalancheService
CVE-2024-22052
Target: Ivanti Connect Secure - IPSec
CVE-2024-23530
Target: Ivanti Avalanche - WLAvalancheService
CVE-2024-23531
Target: Ivanti Avalanche - WLInfoRailService
CVE-2024-23532
Target: Ivanti Avalanche - WLAvalancheService
CVE-2024-24993
Target: Ivanti Avalanche - Web Component
CVE-2024-24995
Target: Ivanti Avalanche - Web Component
CVE-2024-23527
Target: Ivanti Avalanche - WLAvalancheService
CVE-2024-36136
Target: Ivanti Avalanche - WLInfoRailService
CVE-2024-37399
Target: Ivanti Avalanche - WLAvalancheService
CVE-2024-38653
Target: Ivanti Avalanche - SmartDeviceServer
CVE-2024-47011
Target: Ivanti Avalanche - Management Server
CVE-2024-47007
Target: Ivanti Avalanche - WLAvalancheService
CVE-2024-38649
Target: Ivanti Connect Secure - IPsec
CVE-2024-47907
Target: Ivanti Connect Secure - IPsec
CVE-2024-50317
Target: Ivanti Avalanche - Core Service
CVE-2024-50318
Target: Ivanti Avalanche - Core Service
CVE-2024-50319
Target: Ivanti Avalanche - Core Service
CVE-2024-50320
Target: Ivanti Avalanche - Server
CVE-2024-50321
Target: Ivanti Avalanche - Core Service
CVE-2024-50331
Target: Ivanti Avalanche - Core Service
CVE-2024-8495
Target: Ivanti Connect Secure - Ivanti Policy Secure
CVE-2024-13180
Target: Ivanti Avalanche - Web Interface
CVE-2024-13165
Target: Ivanti EPM - Core
CVE-2024-13166
Target: Ivanti EPM - Core
CVE-2024-13167
Target: Ivanti EPM - Core
CVE-2024-13168
Target: Ivanti EPM - Core
CVE-2024-13170
Target: Ivanti EPM - Core
CVE-2024-13179
Target: Ivanti Avalanche - Web Interface
CVE-2024-47009
Target: Ivanti Avalanche - Web Interface
CVE-2024-13181
Target: Ivanti Avalanche - Web Interface
CVE-2025-22463
Target: Ivanti Workspace Control - Core
CVE-2024-9842
Target: Ivanti Secure Access Client
CVE-2024-47010
Target: Ivanti Avalanche - Web Interface
CVE-2024-50327
Target: Ivanti Endpoint Manager - Core
CVE-2024-37376
Target: Ivanti Endpoint Manager - Core
CVE-2024-50326
Target: Ivanti Endpoint Manager - Core
CVE-2024-50324
Target: Ivanti Endpoint Manager - Core
CVE-2024-9381
Target: Ivanti CSA - Cloud Services Appliance
CVE-2024-9380
Actively ExploitedTarget: Ivanti CSA - Admin Web Console
CVE-2024-34785
Target: Ivanti EPM - Core
CVE-2024-34783
Target: Ivanti EPM - Core
CVE-2024-34779
Target: Ivanti EPM - Core
CVE-2024-32848
Target: Ivanti EPM - Core
CVE-2024-32846
Target: Ivanti EPM - Core
CVE-2024-32845
Target: Ivanti EPM - Core
CVE-2024-32843
Target: Ivanti EPM - Core
CVE-2024-32842
Target: Ivanti EPM - Core
CVE-2024-32840
Target: Ivanti EPM - Core
CVE-2024-8190
Actively ExploitedTarget: Ivanti Cloud Services Appliance - Cloud Services Appliance
CVE-2024-37373
Target: Ivanti Avalanche - Central Filestore
CVE-2025-6770
Target: Ivanti Endpoint Manager Mobile - EPMM
CVE-2024-13158
Target: Ivanti EPM - Core
CVE-2024-29848
Target: Ivanti Avalanche - Web Component
CVE-2024-32844
Target: Ivanti Endpoint Manager - Core
CVE-2024-34780
Target: Ivanti Endpoint Manager - Core
CVE-2024-38655
Target: Ivanti Connect Secure - Admin Interface
CVE-2024-34781
Target: Ivanti Endpoint Manager - Core
CVE-2024-34782
Target: Ivanti Endpoint Manager - Core
CVE-2024-34784
Target: Ivanti Endpoint Manager - Core
CVE-2025-10242
Target: Ivanti EPMM - Admin Panel
CVE-2025-8297
Target: Ivanti Avalanche - Management Console
CVE-2025-8296
Target: Ivanti Avalanche - Management Console
CVE-2025-6771
Target: Ivanti Endpoint Manager Mobile - EPMM
CVE-2025-7037
Target: Ivanti Endpoint Manager - Database
CVE-2024-50328
Target: Ivanti Endpoint Manager - Core
CVE-2024-32839
Target: Ivanti Endpoint Manager - Core
CVE-2024-32841
Target: Ivanti Endpoint Manager - Core
CVE-2024-32847
Target: Ivanti Endpoint Manager - Core
CVE-2024-13162
Target: Ivanti EPM - Core
CVE-2025-10985
Target: Ivanti EPMM - Admin Panel
CVE-2025-4428
Actively ExploitedTarget: Ivanti Endpoint Manager - API component
CVE-2025-22461
Target: Ivanti Endpoint Manager - Web Interface
CVE-2025-10243
Target: Ivanti EPMM - Admin Panel
CVE-2024-13813
Target: Ivanti Secure Access Client
CVE-2024-27984
Target: Ivanti Avalanche - Web Component
CVE-2025-13661
Target: Ivanti Endpoint Manager - Core
CVE-2024-8539
Target: Ivanti Secure Access Client
CVE-2024-9844
Target: Ivanti Connect Secure - Secure Application Manager
CVE-2025-10918
Target: Ivanti Endpoint Manager - Agent
CVE-2024-10256
Target: Ivanti Patch SDK
CVE-2024-7572
Target: Ivanti DSM - Management Server
CVE-2025-0283
Target: Ivanti Connect Secure - Gateway