cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2019-12373,https://securityvulnerability.io/vulnerability/CVE-2019-12373,,"Improper access control and open directories in Ivanti LANDESK Management Suite (LDMS, aka Endpoint Manager) 10.0.1.168 Service Update 5 may lead to remote disclosure of administrator passwords.",Ivanti,Landesk Management Suite,9,CRITICAL,0.0007300000288523734,false,false,false,false,,false,false,2019-06-03T19:27:16.000Z,0
CVE-2019-12374,https://securityvulnerability.io/vulnerability/CVE-2019-12374,,"A SQL Injection vulnerability exists in Ivanti LANDESK Management Suite (LDMS, aka Endpoint Manager) 10.0.1.168 Service Update 5 due to improper username sanitization in the Basic Authentication implementation in core/provisioning.secure/ProvisioningSecure.asmx in Provisioning.Secure.dll.",Ivanti,Landesk Management Suite,8.1,HIGH,0.006870000157505274,false,false,false,false,,false,false,2019-06-03T19:26:14.000Z,0
CVE-2019-12375,https://securityvulnerability.io/vulnerability/CVE-2019-12375,,"Open directories in Ivanti LANDESK Management Suite (LDMS, aka Endpoint Manager) 10.0.1.168 Service Update 5 may lead to remote information disclosure and arbitrary code execution.",Ivanti,Landesk Management Suite,6.3,MEDIUM,0.0006200000061653554,false,false,false,false,,false,false,2019-06-03T19:24:45.000Z,0
CVE-2019-12376,https://securityvulnerability.io/vulnerability/CVE-2019-12376,,"Use of a hard-coded encryption key in Ivanti LANDESK Management Suite (LDMS, aka Endpoint Manager) 10.0.1.168 Service Update 5 may lead to full managed endpoint compromise by an authenticated user with read privileges.",Ivanti,Landesk Management Suite,4.5,MEDIUM,0.0004799999878741801,false,false,false,false,,false,false,2019-06-03T19:23:37.000Z,0
CVE-2019-12377,https://securityvulnerability.io/vulnerability/CVE-2019-12377,,"A vulnerable upl/async_upload.asp web API endpoint in Ivanti LANDESK Management Suite (LDMS, aka Endpoint Manager) 10.0.1.168 Service Update 5 allows arbitrary file upload, which may lead to arbitrary remote code execution.",Ivanti,Landesk Management Suite,9.8,CRITICAL,0.050540000200271606,false,false,false,false,,false,false,2019-06-03T19:19:43.000Z,0
CVE-2016-3147,https://securityvulnerability.io/vulnerability/CVE-2016-3147,,Buffer overflow in the collector.exe listener of the Landesk Management Suite 10.0.0.271 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large packet.,Ivanti,Landesk Management Suite,9.8,CRITICAL,0.023310000076889992,false,false,false,false,,false,false,2017-01-23T21:00:00.000Z,0