Ivanti: >> Virtual Traffic Manager >> 22.5 Security Vulnerabilities
OS command injection in Ivanti Virtual Traffic Manager before version 22.9r4 allows a remote authenticated attacker with admin privileges to achieve remote code execution.
CVSS Score
7.2
EPSS Score
0.015
Published
2026-05-12
CVE-2024-7593
Incorrect implementation of an authentication algorithm in Ivanti vTM other than versions 22.2R1 or 22.7R2 allows a remote unauthenticated attacker to bypass authentication of the admin panel.
Known exploited
CVSS Score
9.8
EPSS Score
0.944
Published
2024-08-13