Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Server-side request forgery in Secure Access
Vulnerability Description
CVE-2025-54087 is a server-side request forgery vulnerability in Secure Access prior to version 14.10. Attackers with administrative privileges can publish a crafted test HTTP request originating from the Secure Access server. The attack complexity is high, there are no attack requirements, and user interaction is required. There is no direct impact to confidentiality, integrity, or availability. There is a low severity subsequent system impact to integrity.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Ivanti Secure Access Client 安全漏洞
Vulnerability Description
Ivanti Secure Access Client是美国Ivanti公司的一个安全软件客户端。 Ivanti Secure Access Client 14.10之前版本存在安全漏洞,该漏洞源于具有管理权限的攻击者可发布特制测试HTTP请求,可能导致服务端请求伪造攻击。
CVSS Information
N/A
Vulnerability Type
N/A