Hundreds of vulnerable Ivanti servers impacted by novel DSLog backdoor

BleepingComputer reports that almost 700 Ivanti servers have been compromised with the novel DSLog backdoor in attacks leveraging the server-side request forgery flaw affecting the SAML component of Ivanti Connect Secure, Policy Secure, and ZTA gateways, tracked as CVE-2024-21893.

attacks backdoor bleepingcomputer compromised connect connect secure cve cve-2024-21893 dslog flaw forgery gateways ivanti ivanti connect secure network security novel patchconfiguration-management policy policy secure reports request saml server servers server-side request forgery vulnerability management vulnerable zta zta gateways