CVE-2026-8992 – Ivanti Secure Access Client

CVSS 8.8 IMPORTANT

“Trust validation failures in remote access software can quietly open the door to elevated attacker access.”

Ivanti released a patch for a high-severity vulnerability affecting Secure Access Client. CVE-2026-8992 has a CVSS score of 8.8, which is High severity.

The vulnerability involves improper certificate validation handling that could allow attackers to bypass trusted communication protections and gain elevated privileges in affected environments. The update strengthens certificate verification controls and reduces the risk of unauthorized access through manipulated or untrusted connections.

Key Details

Affected Product: Ivanti Secure Access Client
Attack Vector: Network
Attack Complexity: Low
Privileges Required: None
User Interaction: Required
CWE Classification: CWE-295

Patch this CVE on all your endpoints in under 5 minutes. First 200 endpoints are free forever, scale as needed.

CVE-2026-8992 – Ivanti Secure Access Client

Key Details

Stay Tuned

PLATFORM

SOLUTIONS

RESOURCES

COMPANY

LEGAL

CONTACTS

+1-346-444-8530

Toll Free: 833-444-8530

708 Main St, 10th FL, Houston, TX 77002