CVE-2023-38042

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2023-38042
A local privilege escalation vulnerability in Ivanti Secure Access Client for Windows allows a low privileged user to execute code as SYSTEM.
CVSS

No CVSS.

References
Link Resource
https://forums.ivanti.com/s/article/Security-Advisory-May-2024?language=en_US Vendor Advisory
https://forums.ivanti.com/s/article/Security-Advisory-May-2024?language=en_US Vendor Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:ivanti:secure_access_client:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
History

20 Jun 2025, 17:48

Type Values Removed Values Added
First Time Microsoft
Ivanti
Ivanti secure Access Client
Microsoft windows
CPE cpe:2.3:a:ivanti:secure_access_client:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
References () https://forums.ivanti.com/s/article/Security-Advisory-May-2024?language=en_US - () https://forums.ivanti.com/s/article/Security-Advisory-May-2024?language=en_US - Vendor Advisory

31 May 2024, 19:14

Type Values Removed Values Added
New CVE
Information

Published : 2024-05-31 18:15

Updated : 2025-06-20 17:48

NVD link : CVE-2023-38042

Mitre link : CVE-2023-38042

JSON object : View

Products Affected

ivanti

  • secure_access_client

microsoft

  • windows
CWE

No CWE.