How severe is CVE-2024-10630?

CVE-2024-10630 has a CVSS v3 score of 7.8 (HIGH).

CVE-2024-10630

Name: application_control
Author: ivanti

7.8HIGH

A race condition in Ivanti Application Control Engine before version 10.14.4.0 allows a local authenticated attacker to bypass the application blocking functionality.

Published: 1/14/2025Updated: 7/11/2025

Description

A race condition in Ivanti Application Control Engine before version 10.14.4.0 allows a local authenticated attacker to bypass the application blocking functionality.

AI AnalysisPowered by AI

Affected Products

ivantiapplication_control

2023.3

ivantiapplication_control

2023.3

ivantiapplication_control

2023.3

ivantiapplication_control

2024.1

ivantiapplication_control

2024.1

ivantiapplication_control

2024.3

ivantisecurity_controls

References

https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Application-Control-Engine-CVE-2024-10630
MitigationVendor Advisory