Skip to content

RadicalNotion.AI

We do not sell or share your personal information

© 2026 RadicalNotion.AI

Security Data

CWE Directory
CAPEC Directory
CNA Directory
CNA Report Cards
Data Sources

Calculators

CVSS Calculator
CVSS 4.0
CVSS 3.1
CVSS 3.0
CVSS 2.0

Platform

My Vulnerabilities
Insights
Notifications
Account
Pricing

Learn

All guides
What is a CVE?
What is CVSS?
The CISA KEV catalog
What is EPSS?

Company

About us
Blog
Book a demo

Get Started

Sign up
Log in

Legal

Privacy
Terms

Security data

Weaknesses (CWE)The MITRE CWE weakness catalog
Attack Patterns (CAPEC)MITRE CAPEC attack patterns
CNAsNumbering authorities + report cards
VendorsVulnerabilities by vendor

Tools

CVSS CalculatorScore CVSS 4.0, 3.1, 3.0 & 2.0

Resources

LearnPlain-English security guides
Data SourcesHow we source CVE data

About Us Blog Pricing Book a Demo

Log in

Home
Vendors
Ivanti
Secure Access Client

Ivanti secure access client Vulnerabilities: CVEs, CISA KEV & Security Advisories

21 CVEs

Ivanti secure access client Vulnerabilities

CVE security advisories and vulnerability history for secure access client by Ivanti.

21

Total CVEs

Published

0

In CISA KEV

Exploited in the wild

0

Public exploits

With known exploit

7.3

Avg CVSS

2023–2026

Last updated May 22, 2026

Overview

Ivanti secure access client has 21 published CVE records since 2023, of which 0 are in CISA's Known Exploited Vulnerabilities catalog and 0 have a known public exploit. The average CVSS base score across scored CVEs is 7.3.

This page aggregates every publicly disclosed vulnerability (CVE) affecting Ivanti secure access client, with a severity breakdown, the affected and patched versions, the most common weakness types, and the full CVE list. Affected platforms include Windows.

Severity and exploitation

How the CVSS severity of Ivanti secure access client's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.

Critical0

High17

Medium4

Low0

In CISA’s Known Exploited Vulnerabilities catalog

0

None of Ivanti secure access client's CVEs are currently listed in CISA's KEV catalog.

Public exploits

0

No Ivanti secure access client CVEs currently have a tracked public exploit.

Affected versions and CVEs

Browse every Ivanti secure access client version named in a CVE, then pick one to see only the CVEs that affect it.

Fixed in

22.710 CVEs
22.7R46 CVEs
22.64 CVEs
22.8R63 CVEs
22.7R32 CVEs
22.8R12 CVEs
22.6.1.11 CVE
22.6R11 CVE
22.7R11 CVE
22.81 CVE

Default status

All versions9 CVEs

Find a version

21 CVEs

Sort

High vulnerability · 2026-05-22
CVE-2026-8992
Patch
CWE-295
High · CVSS 8.8
EPSS 0.1% (32th pct)2026-05-22
High vulnerability · 2026-05-12
CVE-2026-7432
Patch
CWE-362
High · CVSS 7.8
EPSS 0.0% (9th pct)2026-05-12
Medium vulnerability · 2026-05-12
CVE-2026-7431
Patch
CWE-732
Medium · CVSS 4.4
EPSS 0.0% (13th pct)2026-05-12
High vulnerability · 2025-03-11
CVE-2025-22454
Patch
CWE-732
High · CVSS 7.8
EPSS 0.2% (44th pct)2025-03-11
High vulnerability · 2025-02-11
CVE-2024-13813
Patch
CWE-732
High · CVSS 7.1
EPSS 0.2% (46th pct)2025-02-11
High vulnerability · 2024-11-13
CVE-2024-29211
Patch
High · CVSS 7.1
EPSS 0.2% (40th pct)2024-11-13
Medium vulnerability · 2024-11-13
CVE-2024-38654
Patch
CWE-125
Medium · CVSS 4.4
EPSS 0.1% (18th pct)2024-11-13
High vulnerability · 2024-11-13
CVE-2024-37398
Patch
High · CVSS 7.8
EPSS 0.4% (58th pct)2024-11-13
High vulnerability · 2024-11-12
CVE-2024-7571
Patch
CWE-267
High · CVSS 7.8
EPSS 0.2% (44th pct)2024-11-12
Medium vulnerability · 2024-11-12
CVE-2024-9843
Patch
CWE-126
Medium · CVSS 5.0
EPSS 0.2% (36th pct)2024-11-12
High vulnerability · 2024-11-12
CVE-2024-9842
Patch
CWE-732
High · CVSS 7.3
EPSS 0.2% (45th pct)2024-11-12
High vulnerability · 2024-11-12
CVE-2024-8539
Patch
CWE-267
High · CVSS 7.1
EPSS 0.2% (43th pct)2024-11-12
High vulnerability · 2024-05-31
CVE-2023-38042
Patch
CWE-250
High · CVSS 7.8
EPSS 0.2% (41th pct)2024-05-31
High vulnerability · 2024-05-31
CVE-2023-46810
Patch
CWE-269
High · CVSS 7.3
EPSS 0.1% (25th pct)2024-05-31
Pulse Secure Client SetupService Directory Traversal Local Privilege Escalation Vulnerability
CVE-2023-34298
Patch
CWE-22
High · CVSS 7.8
EPSS 0.1% (30th pct)2024-05-03
High vulnerability · 2023-11-14
CVE-2023-41718
Patch
CWE-276
High · CVSS 7.8
EPSS 0.3% (50th pct)2023-11-14
High vulnerability · 2023-11-14
CVE-2023-35080
Patch
CWE-276
High · CVSS 8.8
EPSS 0.5% (68th pct)2023-11-14
Medium vulnerability · 2023-11-14
CVE-2023-38544
Patch
Medium · CVSS 5.3
EPSS 0.2% (38th pct)2023-11-14
High vulnerability · 2023-11-14
CVE-2023-38043
Patch
CWE-400
High · CVSS 8.8
EPSS 0.3% (56th pct)2023-11-14
High vulnerability · 2023-11-14
CVE-2023-38543
Patch
CWE-770
High · CVSS 8.8
EPSS 0.3% (54th pct)2023-11-14
High vulnerability · 2023-10-25
CVE-2023-38041
Patch
CWE-367
High · CVSS 7.8
EPSS 0.4% (63th pct)2023-10-25

Common weakness types

The CWE weakness categories most often found in Ivanti secure access client CVEs. Follow any weakness for its full explanation.

CWE-732Incorrect Permission Assignment for Critical Resource4 CVEs
CWE-276Incorrect Default Permissions2 CVEs
CWE-267Privilege Defined With Unsafe Actions2 CVEs
CWE-250Execution with Unnecessary Privileges1 CVE
CWE-269Improper Privilege Management1 CVE
CWE-295Improper Certificate Validation1 CVE
CWE-362Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')1 CVE
CWE-367Time-of-check Time-of-use (TOCTOU) Race Condition1 CVE

Disclosure activity by year

How many Ivanti secure access client CVEs were published each year.

2023

6

2024

10

2025

2

2026

3

Other Ivanti products

Browse vulnerabilities for other products by Ivanti.

Connect Secure132 CVEs avalanche117 CVEs Endpoint Manager116 CVEs Policy Secure78 CVEs endpoint_manager45 CVEs EPM33 CVEs Endpoint Manager Mobile28 CVEs connect_secure24 CVEs

All Ivanti vulnerabilities

Frequently asked questions

Common questions about Ivanti secure access client vulnerabilities.

How many CVEs does Ivanti secure access client have?

Ivanti secure access client has 21 published CVE records since 2023.

How many Ivanti secure access client CVEs are in CISA KEV?

None of Ivanti secure access client's CVEs are currently listed in CISA's Known Exploited Vulnerabilities catalog.

Are there public exploits for Ivanti secure access client vulnerabilities?

No Ivanti secure access client CVEs currently have a tracked public exploit in this dataset.

Which versions of Ivanti secure access client are affected?

11 distinct Ivanti secure access client versions are named across its CVEs. Use the version filter above to see the CVEs affecting a specific version.

What are the most common weakness types in Ivanti secure access client CVEs?

Ivanti secure access client's CVEs most often map to these CWE weakness types: CWE-732 (Incorrect Permission Assignment for Critical Resource), CWE-276 (Incorrect Default Permissions), CWE-267 (Privilege Defined With Unsafe Actions), CWE-250 (Execution with Unnecessary Privileges).

What is the average severity of Ivanti secure access client CVEs?

The average CVSS base score across Ivanti secure access client's scored CVEs is 7.3.

References

All Ivanti vulnerabilities
The MITRE CVE Program (opens in a new tab)
Learn: What is a CVE?
CWE directory: the weakness types these CVEs map to

Vulnerability data is sourced from the CVE Program; severity, KEV, and exploit signals are aggregated by RadicalNotion.AI.

Track Ivanti secure access client vulnerabilities

Monitor new Ivanti secure access client vulnerabilities as they are disclosed, with AI-written analysis and remediation guidance.

Start free See pricing

On this page

Overview
Severity and exploitation
Affected versions and CVEs
Common weakness types
Disclosure activity
Other products
FAQ
References