cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-10251,https://securityvulnerability.io/vulnerability/CVE-2024-10251,Insecure Permissions Lead to Local Privilege Escalation,"An identified vulnerability in Ivanti Security Controls allows local authenticated attackers to exploit insecure permissions found in earlier versions. This design flaw prior to 2024.4.1 can enable attackers to escalate their privileges, potentially compromising the integrity of the affected systems. Organizations using these versions are urged to evaluate their security posture and consider mitigation strategies.",Ivanti,Security Controls,7.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-12-11T16:40:38.536Z,0
CVE-2024-10256,https://securityvulnerability.io/vulnerability/CVE-2024-10256,Local Authenticated Attacker Can Delete Arbitrary Files in Ivanti Patch SDK Before v9.7.703,"The vulnerability presents a scenario where the Ivanti Patch SDK before version 9.7.703 exposes insufficient permissions, allowing a local authenticated attacker to execute unauthorized file deletions. This weakness could lead to significant disruptions in software management and maintenance operations, as sensitive files may be targeted and removed without proper permissions.",Ivanti,"Patch Sdk,Endpoint Manager,Security Controls,Patch For Configuration Manager,Neurons For Patch Management,Neurons Agent Platform",7.1,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-12-10T18:46:01.911Z,0