Ivanti

Workspace Control

22 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2022-21823

  • EPSS 0.1%
  • Veröffentlicht 10.01.2022 14:12:32
  • Zuletzt bearbeitet 21.11.2024 06:45:30

A insecure storage of sensitive information vulnerability exists in Ivanti Workspace Control <2021.2 (10.7.30.0) that could allow an attacker with locally authenticated low privileges to obtain key information due to an unspecified attack vector.

7.5

CVE-2019-19138

  • EPSS 1.63%
  • Veröffentlicht 15.12.2021 08:15:07
  • Zuletzt bearbeitet 21.11.2024 04:34:15

Ivanti Workspace Control before 10.4.50.0 allows attackers to degrade integrity.

7.8

CVE-2021-36235

  • EPSS 0.3%
  • Veröffentlicht 01.09.2021 01:15:06
  • Zuletzt bearbeitet 21.11.2024 06:13:21

An issue was discovered in Ivanti Workspace Control before 10.6.30.0. A locally authenticated user with low privileges can bypass File and Folder Security by leveraging an unspecified attack vector. As a result, the attacker can start applications wi...

7.8

CVE-2019-17066

  • EPSS 0.12%
  • Veröffentlicht 18.05.2020 22:15:12
  • Zuletzt bearbeitet 21.11.2024 04:31:38

In Ivanti WorkSpace Control before 10.4.40.0, a user can elevate rights on the system by hijacking certain user registries. This is possible because pwrgrid.exe first checks the Current User registry hives (HKCU) when starting an application with ele...

5.5

CVE-2020-11533

  • EPSS 0.24%
  • Veröffentlicht 04.04.2020 20:15:11
  • Zuletzt bearbeitet 21.11.2024 04:58:05

Ivanti Workspace Control before 10.4.30.0, when SCCM integration is enabled, allows local users to obtain sensitive information (keying material).

9.8

CVE-2019-16382

  • EPSS 15.59%
  • Veröffentlicht 19.03.2020 17:15:12
  • Zuletzt bearbeitet 21.11.2024 04:30:36

An issue was discovered in Ivanti Workspace Control 10.3.110.0. One is able to bypass Ivanti's FileGuard folder protection by renaming the WMTemp work folder used by PowerGrid. A malicious PowerGrid XML file can then be created, after which the folde...

7.8

CVE-2019-19675

  • EPSS 0.15%
  • Veröffentlicht 17.12.2019 15:15:25
  • Zuletzt bearbeitet 21.11.2024 04:35:09

In Ivanti Workspace Control before 10.3.180.0. a locally authenticated user with low privileges can bypass Managed Application Security by leveraging an unspecified attack vector in Workspace Preferences, when it is enabled. As a result, the attacker...

7.8

CVE-2019-10885

  • EPSS 0.17%
  • Veröffentlicht 05.04.2019 17:29:00
  • Zuletzt bearbeitet 21.11.2024 04:20:02

An issue was discovered in Ivanti Workspace Control before 10.3.90.0. Local authenticated users with low privileges in a Workspace Control managed session can bypass Workspace Control security features configured for this session by resetting the ses...

7.8

CVE-2018-15593

  • EPSS 0.14%
  • Veröffentlicht 15.10.2018 16:29:02
  • Zuletzt bearbeitet 21.11.2024 03:51:08

An issue was discovered in Ivanti Workspace Control before 10.3.10.0 and RES One Workspace. A local authenticated user can decrypt the encrypted datastore or relay server password by leveraging an unspecified attack vector.

7.8

CVE-2018-15592

Exploit
  • EPSS 0.16%
  • Veröffentlicht 15.10.2018 16:29:01
  • Zuletzt bearbeitet 21.11.2024 03:51:08

An issue was discovered in Ivanti Workspace Control before 10.3.10.0 and RES One Workspace. A local authenticated user can execute processes with elevated privileges via an unspecified attack vector.