CNNVD-202507-1708 Information
CNNVD ID
CNNVD-202507-1708
Related CVE
- CNNVD Published: 2025-07-12
Description (Chinese)
Ivanti Desktop and Server Management(Ivanti DSM)是美国Ivanti公司的一种多平台统一端点管理解决方案。 Ivanti Desktop and Server Management 2024.2之前版本存在安全漏洞,该漏洞源于硬编码密钥,可能导致相邻网络上的已认证攻击者解密敏感数据。
Description (English)
Ivanti Desktop and Server Management (Ivanti DSM) is a multi-platform integrated endpoint management solution for Ivanti, United States. There was a security loophole in the previous version of Ivanti Desktop and Server Management 2024.2, which originated from a hard-coded key and could lead to the decryption of sensitive data by a certified assailant on a neighbouring network.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
iWT
Published
2025-07-12
Last Modified
2026-02-24
References
https://forums.ivanti.com/s/article/SA-2024-07-12-CVE-2024-38648 https://access.redhat.com/security/cve/cve-2024-38648
Patch
https://forums.ivanti.com/s/article/SA-2024-07-12-CVE-2024-38648
Share on: