Unrated severityNVD Advisory· Published Nov 13, 2024· Updated Nov 23, 2024
CVE-2024-39709
CVE-2024-39709
Description
Incorrect file permissions in Ivanti Connect Secure before version 22.6R2 (Not Applicable to 9.1Rx) and Ivanti Policy Secure before version 22.7R1 (Not Applicable to 9.1Rx) allow a local authenticated attacker to escalate their privileges.
Affected products
4<22.6R2+ 1 more
- (no CPE)range: <22.6R2
- (no CPE)range: 22.6R2
<22.7R1+ 1 more
- (no CPE)range: <22.7R1
- (no CPE)range: 22.7R1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.