{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-39709", "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1", "state": "PUBLISHED", "assignerShortName": "hackerone", "dateReserved": "2024-06-28T01:04:08.820Z", "datePublished": "2024-11-13T01:54:45.448Z", "dateUpdated": "2024-11-23T21:06:04.916Z"}, "containers": {"cna": {"descriptions": [{"lang": "en", "value": "Incorrect file permissions in Ivanti Connect Secure before version 22.6R2 (Not Applicable to 9.1Rx) and Ivanti Policy Secure before version 22.7R1 (Not Applicable to 9.1Rx) allow a local authenticated attacker to escalate their privileges."}], "affected": [{"defaultStatus": "unaffected", "vendor": "Ivanti", "product": "Connect Secure", "versions": [{"version": "22.6R2", "status": "affected", "lessThan": "22.6R2", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "vendor": "Ivanti", "product": "Policy Secure", "versions": [{"version": "22.7R1", "status": "affected", "lessThan": "22.7R1", "versionType": "custom"}]}], "references": [{"url": "https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Connect-Secure-ICS-Ivanti-Policy-Secure-IPS-Ivanti-Secure-Access-Client-ISAC-Multiple-CVEs"}], "metrics": [{"cvssV3_0": {"version": "3.0", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH"}}], "providerMetadata": {"orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1", "shortName": "hackerone", "dateUpdated": "2024-11-23T21:06:04.916Z"}}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-732", "lang": "en", "description": "CWE-732 Incorrect Permission Assignment for Critical Resource"}]}], "affected": [{"vendor": "ivanti", "product": "connect_secure", "cpes": ["cpe:2.3:a:ivanti:connect_secure:-:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "0", "status": "affected", "lessThan": "22.6R2", "versionType": "custom"}]}, {"vendor": "ivanti", "product": "policy_secure", "cpes": ["cpe:2.3:a:ivanti:policy_secure:*:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "0", "status": "affected", "lessThan": "22.6R1", "versionType": "custom"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2024-11-13T18:12:49.534551Z", "id": "CVE-2024-39709", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-13T18:15:21.838Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2024-39709", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-11-13T18:12:49.534551Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:ivanti:connect_secure:-:*:*:*:*:*:*:*"], "vendor": "ivanti", "product": "connect_secure", "versions": [{"status": "affected", "version": "0", "lessThan": "22.6R2", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:a:ivanti:policy_secure:*:*:*:*:*:*:*:*"], "vendor": "ivanti", "product": "policy_secure", "versions": [{"status": "affected", "version": "0", "lessThan": "22.6R1", "versionType": "custom"}], "defaultStatus": "unaffected"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-732", "description": "CWE-732 Incorrect Permission Assignment for Critical Resource"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-13T18:12:35.915Z"}}], "cna": {"metrics": [{"cvssV3_0": {"version": "3.0", "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}}], "affected": [{"vendor": "Ivanti", "product": "Connect Secure", "versions": [{"status": "affected", "version": "22.6R2", "lessThan": "22.6R2", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"vendor": "Ivanti", "product": "Policy Secure", "versions": [{"status": "affected", "version": "22.7R1", "lessThan": "22.7R1", "versionType": "custom"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Connect-Secure-ICS-Ivanti-Policy-Secure-IPS-Ivanti-Secure-Access-Client-ISAC-Multiple-CVEs"}], "descriptions": [{"lang": "en", "value": "Incorrect file permissions in Ivanti Connect Secure before version 22.6R2 (Not Applicable to 9.1Rx) and Ivanti Policy Secure before version 22.7R1 (Not Applicable to 9.1Rx) allow a local authenticated attacker to escalate their privileges."}], "providerMetadata": {"orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1", "shortName": "hackerone", "dateUpdated": "2024-11-23T21:06:04.916Z"}}}, "cveMetadata": {"cveId": "CVE-2024-39709", "state": "PUBLISHED", "dateUpdated": "2024-11-23T21:06:04.916Z", "dateReserved": "2024-06-28T01:04:08.820Z", "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1", "datePublished": "2024-11-13T01:54:45.448Z", "assignerShortName": "hackerone"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ivanti:connect_secure:*:*:*:*:*:*:*:*", "matchCriteriaId": "3281AC31-EAEC-4C8D-A0AA-3CDD1092D3EE", "versionEndExcluding": "9.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:ivanti:connect_secure:*:*:*:*:*:*:*:*", "matchCriteriaId": "2FC3DCD5-1293-42A0-AA2E-C19F7D3F5B44", "versionEndExcluding": "22.6", "versionStartIncluding": "21.9", "vulnerable": true}, {"criteria": "cpe:2.3:a:ivanti:connect_secure:9.1:-:*:*:*:*:*:*", "matchCriteriaId": "4F450898-0B06-4073-9B76-BF22F68BD14F", "vulnerable": true}, {"criteria": "cpe:2.3:a:ivanti:connect_secure:22.6:-:*:*:*:*:*:*", "matchCriteriaId": "6C383863-1E90-4B72-A500-4326782BC92F", "vulnerable": true}, {"criteria": "cpe:2.3:a:ivanti:connect_secure:22.6:r1:*:*:*:*:*:*", "matchCriteriaId": "AB9A5868-34FB-446E-817F-6701CC5DE923", "vulnerable": true}, {"criteria": "cpe:2.3:a:ivanti:policy_secure:*:-:*:*:*:*:*:*", "matchCriteriaId": "9D14A0CE-C640-4315-BD32-B41C88DF7308", "versionEndExcluding": "9.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:ivanti:policy_secure:*:*:*:*:*:*:*:*", "matchCriteriaId": "24416793-D1B2-4AFC-AAB4-A5FCD4CD5526", "versionEndExcluding": "22.7", "versionStartIncluding": "22.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:ivanti:policy_secure:9.1:-:*:*:*:*:*:*", "matchCriteriaId": "6418A649-3A63-40CC-BD7C-309B3B0B2595", "vulnerable": true}, {"criteria": "cpe:2.3:a:ivanti:policy_secure:22.7:-:*:*:*:*:*:*", "matchCriteriaId": "1F22B988-2585-4853-9838-AB3746C8B888", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Incorrect file permissions in Ivanti Connect Secure before version 22.6R2 (Not Applicable to 9.1Rx) and Ivanti Policy Secure before version 22.7R1 (Not Applicable to 9.1Rx) allow a local authenticated attacker to escalate their privileges."}, {"lang": "es", "value": "Los permisos de archivo incorrectos en Ivanti Connect Secure anterior a la versi\u00f3n 22.6R2 y en Ivanti Policy Secure anterior a la versi\u00f3n 22.6R1 permiten que un atacante autenticado local aumente sus privilegios."}], "id": "CVE-2024-39709", "lastModified": "2025-07-16T00:32:01.760", "metrics": {"cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "support@hackerone.com", "type": "Secondary"}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2024-11-13T02:15:18.993", "references": [{"source": "support@hackerone.com", "tags": ["Vendor Advisory"], "url": "https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Connect-Secure-ICS-Ivanti-Policy-Secure-IPS-Ivanti-Secure-Access-Client-ISAC-Multiple-CVEs"}], "sourceIdentifier": "support@hackerone.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-732"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}