VYPR
Unrated severityNVD Advisory· Published Dec 10, 2024· Updated Dec 10, 2024

CVE-2024-10256

CVE-2024-10256

Description

Insufficient permissions in Ivanti Patch SDK before version 9.7.703 allows a local authenticated attacker to delete arbitrary files.

Affected products

7
  • Ivanti/Patch SDKllm-create2 versions
    <9.7.703+ 1 more
    • (no CPE)range: <9.7.703
    • (no CPE)range: 9.7.703
  • Range: 2024 November Security Update
  • Ivanti/Neurons Agent Platformv5
    Range: 2024.4
  • Ivanti/Neurons for Patch Managementv5
    Range: 2024.4
  • Ivanti/Patch for Configuration Managerv5
    Range: 2024.4
  • Range: 2024.4

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.