CNNVD-202507-1709 Information

CNNVD ID

CNNVD-202507-1709

Related CVE

CVE-2023-39339

• CNNVD Published: 2025-07-12

Description (Chinese)

Ivanti Policy Secure（IPS）是美国Ivanti公司的一个网络访问控制 (NAC) 解决方案。 Ivanti Policy Secure（IPS） 22.6R1之前版本存在安全漏洞，该漏洞源于已认证管理员可通过特制Web请求执行任意文件读取。

Description (English)

Ivanti Policy Security (IPS) is a web access control (NAC) solution for Ivanti in the United States. The previous version of Ivanti Policy Security (IPS) 22.6R1 had a security gap, which stemmed from the fact that a certified administrator could request access to any file by special Web.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

iWT

Published

2025-07-12

Last Modified

2026-02-24

References

https://forums.ivanti.com/s/article/Security-patch-release-Ivanti-Policy-Secure-22-6R1 https://access.redhat.com/security/cve/cve-2023-39339

Patch

https://forums.ivanti.com/s/article/Security-patch-release-Ivanti-Policy-Secure-22-6R1