CNNVD-202510-268 Information
Oct 02, 2025
cve
CNNVD ID
CNNVD-202510-268
Related CVE
- CNNVD Published: 2025-10-02
Description (Chinese)
Ivanti Secure Access Client是美国Ivanti公司的一个安全软件客户端。 Ivanti Secure Access Client 14.10之前版本存在安全漏洞,该漏洞源于攻击者可通过控制台重定向受害者至任意URL,可能导致开放重定向攻击。
Description (English)
Ivanti Security Access Clinic is a secure software client for Ivanti, United States. The previous version of Ivanti Security Access Channel 14.10 had a security loophole, which stemmed from the fact that the attackers could redirect their victims through the control counter to any URL, which could lead to open-ended re-direction attacks.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Ivanti
Published
2025-10-02
Last Modified
2026-02-24
References
https://www.absolute.com/platform/security-information/vulnerability-archive/cve-2025-54088
Patch
https://www.ivanti.com/company/history/pulse-secure?psredirect
Share on: