CNNVD-202508-1061 Information

Aug 12, 2025 cve

CNNVD ID

CNNVD-202508-1061

CVE-2025-8310

CNNVD Published: 2025-08-12

Description (Chinese)

Ivanti Virtual Application Delivery Controller是美国Ivanti公司的一款软件定义的应用程序交付控制器。 Ivanti Virtual Application Delivery Controller 22.9之前版本存在安全漏洞，该漏洞源于管理控制台缺少授权，可能导致接管管理员账户。

Description (English)

Ivanti Virtual Application Defense Contractor is the application delivery controller defined as a software from Ivanti, United States. The previous version of Ivanti Virtual Application Defense Contractor 22.9 had a security loophole, which stemmed from the lack of authorization for the Management Console, which could lead to the taking over of the administrator’s account.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Ivanti

Published

2025-08-12

Last Modified

2026-02-24

References

https://forums.ivanti.com/s/article/August-Security-Advisory-Ivanti-Virtual-Application-Delivery-Controller-vADC-previously-vTM-CVE-2025-8310?language=en_US https://vigilance.fr/vulnerability/Ivanti-Virtual-Application-Delivery-Controller-privilege-escalation-via-Admin-Console-Password-Resetting-47929

Patch

https://forums.ivanti.com/s/article/August-Security-Advisory-Ivanti-Virtual-Application-Delivery-Controller-vADC-previously-vTM-CVE-2025-8310?language=en_US

Share on: