basicsecurity.net
Proof, not just disclosure.
Threats / Contributors / Ivanti
Vendor security team contributor

Ivanti

cited as evidence in 27 · CNA assigner on 17 of 30 known-exploited records. Every aggregate on this page is recomputed from the records listed below — each one already cited to its public source.

ivanti.com ↗ · home of the cited advisories

30
records cited in
deterministic count
0
finder / reporter credits
CVE.org credits
17
CVE records catalogued (CNA)
assigner
87%
avg modeled exploit prob.
FIRST EPSS, 30/30
37%
ransomware-associated
11 of 30 · CISA flag
01

Known for

— recomputed from this contributor’s own records
SurfacesEdge / remote-access infra (27), Server / web platform (2), Application / other (1)
WeaknessInjection (11), Path traversal / file (6), Authentication (6), Memory safety (2), Authorization / access control (1)
PortfolioIvanti (26), Apache (2), dotCMS (1), QNAP (1)
02

Narrative reach

— how far this contributor’s records carry an attacker, front door → lights out
1Front door
29reach this stage
2Keys to the kingdom
29reach this stage
3Lateral reach
29reach this stage
4Data at risk
4reach this stage
5Lights out
1reach this stage

Furthest any of these records carries an attacker: 5 · Lights out. 4 of 29 narrative-framed records reach data-at-risk or lights-out. (furthest-position idiom, reused from the landing map; the stage mapping is a model output over cited evidence.)

03

Recent highlights

— this contributor’s newest known-exploited records
CVE-2026-10520Ivanti60%KEVCVE-2026-6973Ivanti20%KEVCVE-2026-1340Ivanti82%KEVCVE-2026-1603Ivanti81%KEVCVE-2026-1281Ivanti81%KEVCVE-2025-4427Ivanti100%KEV
04

Every record they’re cited in

— all 30, each linked to its cited source

This is the evidence behind every number above. Sorted ransomware-first, then by modeled exploit probability.

CVE-2024-21893Ivanti100%RWKEVCVE-2023-35082Ivanti100%RWKEVCVE-2024-21887Ivanti100%RWKEVCVE-2023-35078Ivanti100%RWKEVCVE-2023-46805Ivanti100%RWKEVCVE-2025-0282Ivanti100%RWKEVCVE-2025-22457Ivanti100%RWKEVCVE-2023-38035Ivanti100%RWKEVCVE-2021-44529Ivanti99%RWKEVCVE-2022-26352dotCMS92%RWKEVCVE-2022-27593QNAP88%RWKEVCVE-2024-7593Ivanti100%KEVCVE-2024-29824Ivanti100%KEVCVE-2024-13159Ivanti100%KEVCVE-2025-4427Ivanti100%KEVCVE-2017-9805Apache99%KEVCVE-2016-3088Apache99%KEVCVE-2024-8963Ivanti98%KEVCVE-2024-13160Ivanti90%KEVCVE-2024-8190Ivanti89%KEVCVE-2024-13161Ivanti89%KEVCVE-2025-4428Ivanti88%KEVCVE-2026-1340Ivanti82%KEVCVE-2026-1281Ivanti81%KEVCVE-2026-1603Ivanti81%KEVCVE-2023-35081Ivanti63%KEVCVE-2024-9380Ivanti63%KEVCVE-2026-10520Ivanti60%KEVCVE-2024-9379Ivanti44%KEVCVE-2026-6973Ivanti20%KEV
05

Coverage & confidence

— what this profile claims, and what it does not

Established (cited)

  • Cited in 30 known-exploited records — the list below; every one links to its public source.
  • Catalogued 17 CVE record(s) as the CNA assigner (from CVE.org).

    • Coverage gaps — stated, not hidden

  • This profile is an aggregation: it asserts only what the listed records already cite — no new external claim about the contributor is made.
  • The TYPE badge and the narrative-stage mapping are editorial (our call), labeled as such, not a sourced fact.