HIGH SeverityCVSS 3.17.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVE-2026-7432

Last updated May 12, 2026 · Published May 12, 2026

← Back to list

Description

A race condition in Ivanti Secure Access Client before 22.8R6 allows a locally authenticated user to escalate privileges to SYSTEM

Affected products

1 listed

ivanti:Secure Access Client

Mappings

CWE

CWE-362

CAPEC

CAPEC-26

Related

Training

API Design That Defends ItselfREST, GraphQL, and gRPC patterns that reduce your attack surface by design.
Authorisation and Access ControlRBAC, ABAC, and privilege escalation patterns in real applications.

CVE® content © MITRE Corporation. Licensed under the CVE Terms of Use. Terms

Need help?Get in touch.