CVE Vulnerabilities

CVE-2025-22460

Use of Default Credentials

Published: May 13, 2025 | Modified: Jul 16, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

Default credentials in Ivanti Cloud Services Application before version 5.0.5 allows a local authenticated attacker to escalate their privileges.

Weakness

The product uses default credentials (such as passwords or cryptographic keys) for potentially critical functionality.

Affected Software

Name Vendor Start Version End Version
Cloud_services_appliance Ivanti * 5.0.5 (excluding)

Potential Mitigations

References