- Description
- External control of a file name in Ivanti Connect Secure before version 22.7R2.6 and Ivanti Policy Secure before version 22.7R1.3 allows a remote authenticated attacker with admin privileges to read arbitrary files.
- Source
- 3c1d8aa1-5a33-4ea4-8992-aadd6440af75
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 6.8
- Impact score
- 4
- Exploitability score
- 2.3
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
- Severity
- MEDIUM
- 3c1d8aa1-5a33-4ea4-8992-aadd6440af75
- CWE-73
- Hype score
- Not currently trending
🚨 CVE-2024-12058 🟠 MEDIUM (6.8) 🏢 Ivanti - Connect Secure 🏗️ 22.7R2.6 🔗 https://t.co/kxEDS8mT9E #CyberCron #VulnAlert https://t.co/OYYAVdZdN5
@cybercronai
11 Feb 2025
109 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
1 Quote
CVE-2024-12058 External control of a file name in Ivanti Connect Secure before version 22.7R2.6 and Ivanti Policy Secure before version 22.7R1.3 allows a remote authenticated attack… https://t.co/l7zI6j5lHU
@CVEnew
11 Feb 2025
212 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes