CVE-2024-9167 Information

Description

Under specific circumstances insecure permissions in Ivanti Velocity License Server before version 5.2 allows a local authenticated attacker to achieve local privilege escalation.

Reference

https://forums.ivanti.com/s/article/Security-Advisory-Velocity-License-Server-CVE-2024-9167