Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cross-site Scripting vulnerability in Secure Access prior to 14.10
Vulnerability Description
CVE-2025-54089 is a cross-site scripting vulnerability in versions of secure access prior to 14.10. Attackers with administrative access to the console can interfere with another administrator’s access to the console. The attack complexity is low; there are no attack requirements. Privileges required to execute the attack are high and the victim must actively participate in the attack sequence. There is no impact to confidentiality or availability, there is a low impact to integrity.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Ivanti Secure Access Client 安全漏洞
Vulnerability Description
Ivanti Secure Access Client是美国Ivanti公司的一个安全软件客户端。 Ivanti Secure Access Client 14.10之前版本存在安全漏洞,该漏洞源于容易受到跨站脚本攻击。
CVSS Information
N/A
Vulnerability Type
N/A