all InfoSec news
Multiple Vulnerabilities in Ivanti Products Could Allow for Remote Code Execution
Jan. 31, 2024, 5:46 p.m. |
Center for Internet Security - Multi-State Information Sharing and Analysis Center www.cisecurity.org
Multiple Vulnerabilities have been discovered in Ivanti Products, the most severe of which could allow for remote code execution.
- Ivanti Connect Secure is a SSL VPN solution for remote and mobile users.
- Ivanti Policy Secure (IPS) is a network access control (NAC) solution which provides network access only to authorized and secured users and devices.
- Ivanti Neurons for Zero Trust Access (nZTA) creates a secure connection from a device to web-based applications on-premises and in the cloud
Successful exploitation could …
access access control a network code code execution connect control ips ivanti ivanti connect secure ivanti policy secure mobile nac network network access network access control policy products remote code remote code execution solution ssl ssl vpn vpn vulnerabilities
More from www.cisecurity.org / Center for Internet Security - Multi-State Information Sharing and Analysis Center
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Corporate Intern - Information Security (Year Round)
@ Associated Bank | US WI Remote
Senior Offensive Security Engineer
@ CoStar Group | US-DC Washington, DC