CNNVD-202510-271 Information
Oct 02, 2025
cve
CNNVD ID
CNNVD-202510-271
Related CVE
- CNNVD Published: 2025-10-02
Description (Chinese)
Ivanti Secure Access Client是美国Ivanti公司的一个安全软件客户端。 Ivanti Secure Access Client 14.10之前版本存在安全漏洞,该漏洞源于具有管理权限的攻击者可发布特制测试HTTP请求,可能导致服务端请求伪造攻击。
Description (English)
Ivanti Security Access Clinic is a secure software client for Ivanti, United States. The previous version of Ivanti Security Access Clinic 14.10 had a security loophole, which arose from the fact that an attacker with regulatory authority could issue a specially designed HTTP request, which could result in a service-level request for a false attack.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Ivanti
Published
2025-10-02
Last Modified
2026-02-24
References
https://www.absolute.com/platform/security-information/vulnerability-archive/cve-2025-54087
Patch
https://www.ivanti.com/company/history/pulse-secure?psredirect
Share on: