Ivanti warns of Connect Secure zero-days exploited in attacks

Two Connect Secure (ICS) and Policy Secure zero-days that have been exploited in the field and allow remote attackers to execute arbitrary instructions on targeted gateways have been made public by Ivanti.

A command injection vulnerability (tracked as CVE-2024-21887) allows authenticated administrators to execute arbitrary commands on susceptible appliances by sending specially crafted requests. The first security flaw (CVE-2023-46805) is an authentication bypass in the web component of the gateways, allowing attackers to access restricted resources by evading control checks.

Mandiant and Volexity have discovered that attackers can execute arbitrary commands on all supported versions of the impacted products read more Ivanti warns of Connect Secure zero-days exploited in attacks.

Get up to date on the latest cybersecurity news and enhance your knowledge of cybersecurity with our thorough coverage of the dangers, breaches, and solutions.

Leave a Reply

Your email address will not be published. Required fields are marked *