T1120
Peripheral Device Discovery
Platforms3
CVEs mapped to this technique6
| CVE | Description | Severity | EPSS | Flags | Modified |
|---|---|---|---|---|---|
| CVE-2025-0282 | A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2, and Ivanti Neurons for ZTA gateways before version 22.7R2.3 allows a remote unauthenticated attacker to achieve remote code execution. | CRITICAL9.0 | 100%p100 | KEV+RPoC | 2025-10-24 |
| CVE-2026-41940 | cPanel and WHM versions after 11.40 contain an authentication bypass vulnerability in the login flow that allows unauthenticated remote attackers to gain unauthorized access to the control panel. | CRITICAL9.8 | 91%p100 | KEV+RWeaponized | 2026-05-06 |
| CVE-2026-1603 | An authentication bypass in Ivanti Endpoint Manager before version 2024 SU5 allows a remote unauthenticated attacker to leak specific stored credential data. | HIGH7.5 | 81%p100 | KEV | 2026-03-10 |
| CVE-2024-37079 | vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger this vulnerability by sending a specially crafted network packet potentially leading to remote code execution. | CRITICAL9.8 | 22%p97 | KEV | 2026-01-26 |
| CVE-2025-21418 | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability | HIGH7.8 | 1.46%p70 | KEV | 2026-02-26 |
| CVE-2025-31277 | The issue was addressed with improved memory handling. This issue is fixed in Safari 18.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6, watchOS 11.6. Processing maliciously crafted web content may lead to memory corruption. | HIGH8.8 | 1.43%p70 | KEVPoC | 2026-04-03 |