Filtered by vendor Ivanti Subscriptions
Total 323 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-37403 1 Ivanti 1 Docs\@work 2024-08-12 5.5 Medium
Ivanti Docs@Work for Android, before 2.26.0 is affected by the 'Dirty Stream' vulnerability. The application fails to properly sanitize file names, resulting in a path traversal-affiliated vulnerability. This potentially enables other malicious apps on the device to read sensitive information stored in the app root.
CVE-2024-36132 1 Ivanti 1 Endpoint Manager Mobile 2024-08-12 7.5 High
Insufficient verification of authentication controls in EPMM prior to 12.1.0.1 allows a remote attacker to bypass authentication and access sensitive resources.
CVE-2024-34788 1 Ivanti 1 Endpoint Manager Mobile 2024-08-12 6.5 Medium
An improper authentication vulnerability in web component of EPMM prior to 12.1.0.1 allows a remote malicious user to access potentially sensitive information