Medium severity4.4NVD Advisory· Published May 12, 2026· Updated May 12, 2026
CVE-2026-7431
CVE-2026-7431
Description
An incorrect permission assignment for critical resource of Ivanti Secure Access Client before 22.8R6 allows a local authenticated user to read or modify sensitive log data via write access to a shared memory section.
Affected products
7cpe:2.3:a:ivanti:secure_access_client:*:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:ivanti:secure_access_client:*:*:*:*:*:*:*:*range: <=22.7
- cpe:2.3:a:ivanti:secure_access_client:22.8:-:*:*:*:*:*:*
- cpe:2.3:a:ivanti:secure_access_client:22.8:r1:*:*:*:*:*:*
- cpe:2.3:a:ivanti:secure_access_client:22.8:r2:*:*:*:*:*:*
- cpe:2.3:a:ivanti:secure_access_client:22.8:r3:*:*:*:*:*:*
- cpe:2.3:a:ivanti:secure_access_client:22.8:r4:*:*:*:*:*:*
- cpe:2.3:a:ivanti:secure_access_client:22.8:r5:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.