High

DATE	CVE	VULNERABILITY TITLE	RISK
2024-09-10	CVE-2024-44103	Untrusted Search Path vulnerability in Ivanti Workspace Control DLL hijacking in the management console of Ivanti Workspace Control version 10.18.0.0 and below allows a local authenticated attacker to escalate their privileges. local low complexity ivanti CWE-426	7.8
2024-09-10	CVE-2024-44104	Authentication Bypass by Spoofing vulnerability in Ivanti Workspace Control An incorrectly implemented authentication scheme that is subjected to a spoofing attack in the management console of Ivanti Workspace Control version 10.18.0.0 and below allows a local authenticated attacker to escalate their privileges. local low complexity ivanti CWE-290	7.8
2024-09-10	CVE-2024-44105	Cleartext Transmission of Sensitive Information vulnerability in Ivanti Workspace Control Cleartext transmission of sensitive information in the management console of Ivanti Workspace Control version 10.18.0.0 and below allows a local authenticated attacker to obtain OS credentials. local low complexity ivanti CWE-319	7.8
2024-09-10	CVE-2024-44106	Unspecified vulnerability in Ivanti Workspace Control Insufficient server-side controls in the management console of Ivanti Workspace Control version 10.18.0.0 and below allows a local authenticated attacker to escalate their privileges. local low complexity ivanti	7.8
2024-09-10	CVE-2024-44107	Uncontrolled Search Path Element vulnerability in Ivanti Workspace Control DLL hijacking in the management console of Ivanti Workspace Control version 10.18.0.0 and below allows a local authenticated attacker to escalate their privileges and achieve arbitrary code execution. local low complexity ivanti CWE-427	7.8
2024-09-10	CVE-2024-8012	Missing Authentication for Critical Function vulnerability in Ivanti Workspace Control An authentication bypass weakness in the message broker service of Ivanti Workspace Control version 10.18.0.0 and below allows a local authenticated attacker to escalate their privileges. local low complexity ivanti CWE-306	7.8
2020-05-18	CVE-2019-17066	Improper Privilege Management vulnerability in Ivanti Workspace Control In Ivanti WorkSpace Control before 10.4.40.0, a user can elevate rights on the system by hijacking certain user registries. ivanti CWE-269	7.2
2020-03-19	CVE-2019-16382	Unspecified vulnerability in Ivanti Workspace Control 10.3.110.0 An issue was discovered in Ivanti Workspace Control 10.3.110.0. network low complexity ivanti	7.5