Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ivanti workspace control vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2019-10885
An issue exists in Ivanti Workspace Control prior to 10.3.90.0. Local authenticated users with low privileges in a Workspace Control managed session can bypass Workspace Control security features configured for this session by resetting the session context.
Ivanti Workspace Control
7.8
CVSSv3
CVE-2019-19675
In Ivanti Workspace Control prior to 10.3.180.0. a locally authenticated user with low privileges can bypass Managed Application Security by leveraging an unspecified attack vector in Workspace Preferences, when it is enabled. As a result, the attacker can start applications that...
Ivanti Workspace Control
7.8
CVSSv3
CVE-2019-17066
In Ivanti WorkSpace Control prior to 10.4.40.0, a user can elevate rights on the system by hijacking certain user registries. This is possible because pwrgrid.exe first checks the Current User registry hives (HKCU) when starting an application with elevated rights.
Ivanti Workspace Control
5.5
CVSSv3
CVE-2018-15590
An issue exists in Ivanti Workspace Control prior to 10.3.0.0 and RES One Workspace, when file and folder security are configured. A local authenticated user can bypass file and folder security restriction by leveraging an unspecified attack vector.
Ivanti Workspace Control
7.8
CVSSv3
CVE-2018-15591
An issue exists in Ivanti Workspace Control prior to 10.3.10.0 and RES One Workspace. A local authenticated user can bypass Application Whitelisting restrictions to execute arbitrary code by leveraging multiple unspecified attack vectors.
Ivanti Workspace Control
7.8
CVSSv3
CVE-2018-15592
An issue exists in Ivanti Workspace Control prior to 10.3.10.0 and RES One Workspace. A local authenticated user can execute processes with elevated privileges via an unspecified attack vector.
Ivanti Workspace Control
7.8
CVSSv3
CVE-2018-15593
An issue exists in Ivanti Workspace Control prior to 10.3.10.0 and RES One Workspace. A local authenticated user can decrypt the encrypted datastore or relay server password by leveraging an unspecified attack vector.
Ivanti Workspace Control
7.5
CVSSv3
CVE-2019-19138
Ivanti Workspace Control prior to 10.4.50.0 allows malicious users to degrade integrity.
Ivanti Workspace Control
5.5
CVSSv3
CVE-2020-11533
Ivanti Workspace Control prior to 10.4.30.0, when SCCM integration is enabled, allows local users to obtain sensitive information (keying material).
Ivanti Workspace Control
5.5
CVSSv3
CVE-2022-21823
A insecure storage of sensitive information vulnerability exists in Ivanti Workspace Control <2021.2 (10.7.30.0) that could allow an attacker with locally authenticated low privileges to obtain key information due to an unspecified attack vector.
Ivanti Workspace Control
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »