{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-4914", "assignerOrgId": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", "state": "PUBLISHED", "assignerShortName": "ivanti", "dateReserved": "2026-03-26T16:37:45.229Z", "datePublished": "2026-04-14T14:15:48.101Z", "dateUpdated": "2026-04-14T17:20:09.361Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", "shortName": "ivanti", "dateUpdated": "2026-04-14T14:15:48.101Z"}, "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-79", "description": "CWE-79 Improper neutralization of input during web page generation ('cross-site scripting')", "type": "CWE"}]}], "impacts": [{"capecId": "CAPEC-592", "descriptions": [{"lang": "en", "value": "CAPEC-592 Stored XSS"}]}], "affected": [{"vendor": "Ivanti", "product": "Neurons for ITSM (On-Premise)", "versions": [{"status": "unaffected", "version": "2025.4"}], "defaultStatus": "affected"}, {"vendor": "Ivanti", "product": "Neurons for ITSM (Cloud)", "versions": [{"status": "unaffected", "version": "2025.4"}], "defaultStatus": "affected"}], "descriptions": [{"lang": "en", "value": "Stored XSS\u00a0in\u00a0Ivanti\u00a0N-ITSM\u00a0before\u00a0version 2025.4\u00a0allows a\u00a0remote\u00a0authenticated\u00a0attacker to\u00a0obtain limited information from other user sessions.\u00a0User interaction is required.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "Stored XSS in Ivanti N-ITSM before version 2025.4 allows a remote authenticated attacker to obtain limited information from other user sessions. User interaction is required. "}]}], "references": [{"url": "https://hub.ivanti.com/s/article/Security-Advisory-Ivanti-Neurons-for-ITSM-CVE-2026-4913-CVE-2026-4914?language=en_US"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE", "baseSeverity": "MEDIUM", "baseScore": 5.4, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"}}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 1.0.1"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-14T17:19:55.903544Z", "id": "CVE-2026-4914", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-14T17:20:09.361Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-4914", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-14T17:19:55.903544Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-14T17:20:03.289Z"}}], "cna": {"source": {"discovery": "UNKNOWN"}, "impacts": [{"capecId": "CAPEC-592", "descriptions": [{"lang": "en", "value": "CAPEC-592 Stored XSS"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 5.4, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Ivanti", "product": "Neurons for ITSM (On-Premise)", "versions": [{"status": "unaffected", "version": "2025.4"}], "defaultStatus": "affected"}, {"vendor": "Ivanti", "product": "Neurons for ITSM (Cloud)", "versions": [{"status": "unaffected", "version": "2025.4"}], "defaultStatus": "affected"}], "references": [{"url": "https://hub.ivanti.com/s/article/Security-Advisory-Ivanti-Neurons-for-ITSM-CVE-2026-4913-CVE-2026-4914?language=en_US"}], "x_generator": {"engine": "Vulnogram 1.0.1"}, "descriptions": [{"lang": "en", "value": "Stored XSS\u00a0in\u00a0Ivanti\u00a0N-ITSM\u00a0before\u00a0version 2025.4\u00a0allows a\u00a0remote\u00a0authenticated\u00a0attacker to\u00a0obtain limited information from other user sessions.\u00a0User interaction is required.", "supportingMedia": [{"type": "text/html", "value": "Stored XSS in Ivanti N-ITSM before version 2025.4 allows a remote authenticated attacker to obtain limited information from other user sessions. User interaction is required. ", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79 Improper neutralization of input during web page generation ('cross-site scripting')"}]}], "providerMetadata": {"orgId": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", "shortName": "ivanti", "dateUpdated": "2026-04-14T14:15:48.101Z"}}}, "cveMetadata": {"cveId": "CVE-2026-4914", "state": "PUBLISHED", "dateUpdated": "2026-04-14T17:20:09.361Z", "dateReserved": "2026-03-26T16:37:45.229Z", "assignerOrgId": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", "datePublished": "2026-04-14T14:15:48.101Z", "assignerShortName": "ivanti"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Stored XSS\u00a0in\u00a0Ivanti\u00a0N-ITSM\u00a0before\u00a0version 2025.4\u00a0allows a\u00a0remote\u00a0authenticated\u00a0attacker to\u00a0obtain limited information from other user sessions.\u00a0User interaction is required."}], "id": "CVE-2026-4914", "lastModified": "2026-04-14T15:16:39.750", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.3, "impactScore": 2.7, "source": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", "type": "Secondary"}]}, "published": "2026-04-14T15:16:39.750", "references": [{"source": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", "url": "https://hub.ivanti.com/s/article/Security-Advisory-Ivanti-Neurons-for-ITSM-CVE-2026-4913-CVE-2026-4914?language=en_US"}], "sourceIdentifier": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "2025.4"}}], "enrichment": {"confidence": 87.0, "confidence_source": "matching", "scores": [{"score": 87.0, "source": "matching"}]}, "original": {"product": "Neurons for ITSM (Cloud)", "source": "cna", "vendor": "Ivanti"}, "product": "neurons_for_itsm", "vendor": "ivanti"}], "analysis": {"en": {"generated_at": "2026-04-14T15:20:48.646946+00:00", "value": {"mitigation_remediation": ["Apply the Ivanti Neurons for ITSM upgrade to version 2025.4 or later."], "summary": {"action": "Apply Patch", "impact": "Cross\u2011Site Scripting leading to limited data disclosure"}, "threat_synthesis": {"affected_systems": "Affected components include the cloud and on\u2011premise editions of Ivanti Neurons for ITSM. Versions prior to 2025.4 are impacted, meaning any organization using an older deployment faces the same risk unless upgraded.", "description_and_impact": "The vulnerability is a stored cross\u2011site scripting flaw in Ivanti Neurons for ITSM, present in all releases before version 2025.4. A malicious authenticated user can inject JavaScript that is later rendered in the browser for other users\u2019 sessions. The injected code runs with the privileges of the victim user, enabling the attacker to read restricted session information and thereby compromise confidentiality. This behavior is classified as CWE\u201179.", "risk_and_exploitability": "The CVSS score is 5.4, indicating medium severity, while EPSS data is not available and the vulnerability is not listed in the CISA KEV catalog. Attackers would need remote authenticated access and user interaction to trigger the payload, reducing the immediacy compared to an unauthenticated exploit. However, a single compromised account could repeatedly affect many users once the stored payload is inserted."}}}}, "created": "2026-04-14T16:15:26.997308+00:00", "title": "Stored XSS in Ivanti N-ITSM Leads to Session Information Disclosure", "updated": "2026-04-14T16:30:24.542414+00:00", "vendors": ["ivanti", "ivanti$PRODUCT$neurons_for_itsm"]}