Ivanti Landesk Management Suite — known CVE vulnerabilities
Every CVE whose affected-product data names Ivanti Landesk Management Suite, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2016-3147 — CVSS 9.8 (critical): Buffer overflow in the collector.exe listener of the Landesk Management Suite 10.0.0.271 and earlier allows remote attackers to cause a…
CVE-2019-12377 — CVSS 9.8 (critical): A vulnerable upl/async_upload.asp web API endpoint in Ivanti LANDESK Management Suite (LDMS, aka Endpoint Manager) 10.0.1.168 Service…
CVE-2019-12373 — CVSS 9.0 (critical): Improper access control and open directories in Ivanti LANDESK Management Suite (LDMS, aka Endpoint Manager) 10.0.1.168 Service Update 5…
CVE-2019-12374 — CVSS 8.1 (high): A SQL Injection vulnerability exists in Ivanti LANDESK Management Suite (LDMS, aka Endpoint Manager) 10.0.1.168 Service Update 5 due to…
CVE-2019-12375 — CVSS 6.3 (medium): Open directories in Ivanti LANDESK Management Suite (LDMS, aka Endpoint Manager) 10.0.1.168 Service Update 5 may lead to remote information…
CVE-2019-12376 — CVSS 4.5 (medium): Use of a hard-coded encryption key in Ivanti LANDESK Management Suite (LDMS, aka Endpoint Manager) 10.0.1.168 Service Update 5 may lead to…