{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-3483", "assignerOrgId": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", "state": "PUBLISHED", "assignerShortName": "ivanti", "dateReserved": "2026-03-03T15:08:57.000Z", "datePublished": "2026-03-10T14:19:25.340Z", "dateUpdated": "2026-03-11T03:56:43.597Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", "shortName": "ivanti", "dateUpdated": "2026-03-10T14:19:34.226Z"}, "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-749", "description": "CWE-749 Exposed dangerous method or function", "type": "CWE"}]}], "impacts": [{"capecId": "CAPEC-500", "descriptions": [{"lang": "en", "value": "CAPEC-500 WebView Injection"}]}], "affected": [{"vendor": "Ivanti", "product": "Desktop and Server Management", "versions": [{"status": "unaffected", "version": "2026.1.1"}], "defaultStatus": "affected"}], "descriptions": [{"lang": "en", "value": "An exposed dangerous method in Ivanti DSM before version 2026.1.1 allows a local authenticated attacker to escalate their privileges.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p>An exposed dangerous method in Ivanti DSM before version 2026.1.1 allows a local authenticated attacker to escalate their privileges.</p>"}]}], "references": [{"url": "https://hub.ivanti.com/s/article/Security-Advisory-Ivanti-DSM-CVE-2026-3483?language=en_US"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseSeverity": "HIGH", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 1.0.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-10T00:00:00+00:00", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3", "id": "CVE-2026-3483"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-11T03:56:43.597Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-3483", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-10T14:58:02.944152Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-10T14:58:08.046Z"}}], "cna": {"source": {"discovery": "UNKNOWN"}, "impacts": [{"capecId": "CAPEC-500", "descriptions": [{"lang": "en", "value": "CAPEC-500 WebView Injection"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Ivanti", "product": "Desktop and Server Management", "versions": [{"status": "unaffected", "version": "2026.1.1"}], "defaultStatus": "affected"}], "references": [{"url": "https://hub.ivanti.com/s/article/Security-Advisory-Ivanti-DSM-CVE-2026-3483?language=en_US"}], "x_generator": {"engine": "Vulnogram 1.0.0"}, "descriptions": [{"lang": "en", "value": "An exposed dangerous method in Ivanti DSM before version 2026.1.1 allows a local authenticated attacker to escalate their privileges.", "supportingMedia": [{"type": "text/html", "value": "<p>An exposed dangerous method in Ivanti DSM before version 2026.1.1 allows a local authenticated attacker to escalate their privileges.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-749", "description": "CWE-749 Exposed dangerous method or function"}]}], "providerMetadata": {"orgId": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", "shortName": "ivanti", "dateUpdated": "2026-03-10T14:19:34.226Z"}}}, "cveMetadata": {"cveId": "CVE-2026-3483", "state": "PUBLISHED", "dateUpdated": "2026-03-11T03:56:43.597Z", "dateReserved": "2026-03-03T15:08:57.000Z", "assignerOrgId": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", "datePublished": "2026-03-10T14:19:25.340Z", "assignerShortName": "ivanti"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ivanti:desktop_\\&_server_management:*:*:*:*:*:*:*:*", "matchCriteriaId": "E962B851-1EDB-4370-9257-85239ED33E52", "versionEndExcluding": "2026.1.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "An exposed dangerous method in Ivanti DSM before version 2026.1.1 allows a local authenticated attacker to escalate their privileges."}, {"lang": "es", "value": "Un m\u00e9todo peligroso expuesto en Ivanti DSM antes de la versi\u00f3n 2026.1.1 permite a un atacante local autenticado escalar sus privilegios."}], "id": "CVE-2026-3483", "lastModified": "2026-03-12T13:58:06.347", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", "type": "Secondary"}]}, "published": "2026-03-10T18:19:01.720", "references": [{"source": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", "tags": ["Vendor Advisory"], "url": "https://hub.ivanti.com/s/article/Security-Advisory-Ivanti-DSM-CVE-2026-3483?language=en_US"}], "sourceIdentifier": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-749"}], "source": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "2026.1.1"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Desktop and Server Management", "source": "cna", "vendor": "Ivanti"}, "product": "desktop\\&server_management", "vendor": "ivanti"}], "analysis": {"en": {"generated_at": "2026-04-17T11:46:00.359712+00:00", "value": {"mitigation_remediation": ["Upgrade Ivanti DSM to version 2026.1.1 or later.", "Restrict local user privileges to prevent unauthorized method invocation.", "Enable auditing or logging for DSM services to detect suspicious activity."], "summary": {"action": "Apply Patch", "impact": "Privilege Escalation"}, "threat_synthesis": {"affected_systems": "Ivanti Desktop and Server Management, version ranges before 2026.1.1 are affected. Any deployment of the DSM product prior to the 2026.1.1 release is vulnerable.", "description_and_impact": "An exposed method in Ivanti Desktop and Server Management is documented as CWE\u2011749, indicating an insecure design flaw that allows a local authenticated user to perform actions beyond intended permissions. This flaw can be exploited to elevate privileges within the DSM application, enabling execution of arbitrary code with higher rights. Because the method is accessible to legitimate users, the attack requires only local authentication and bypasses normal authorization controls, potentially compromising the entire server environment.", "risk_and_exploitability": "The vulnerability carries a CVSS score of 7.8, indicating moderate to high severity. EPSS is less than 1%, suggesting low exploitation probability at present, and the issue is not listed in CISA\u2019s known\u2011exploited vulnerabilities catalog. Attackers must have local authenticated access, but once they do, privilege escalation is achievable without needing remote code execution. The risk is therefore primarily limited to systems where local users have elevated privileges. Organizations with strict local user controls and prompt patching can mitigate the threat."}}}}, "created": "2026-03-11T11:50:09.407861+00:00", "title": "Local Privilege Escalation via Exposed Method in Ivanti Desktop and Server Management", "updated": "2026-04-17T12:00:11.710894+00:00", "vendors": ["ivanti", "ivanti$PRODUCT$desktop\\&server_management"]}