CISA Issues Emergency Directive to Federal Agencies on Ivanti Zero-Day Exploits

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday issued an emergency directive urging Federal Civilian Executive Branch (FCEB) agencies to implement mitigations against two actively exploited zero-day flaws in Ivanti Connect Secure (ICS) and Ivanti Policy Secure (IPS) products.
The development came after the vulnerabilities – an authentication bypass

actively exploited agency cisa civilian connect cybersecurity development emergency emergency directive executive exploited exploits fceb federal federal agencies federal civilian flaws ics infrastructure infrastructure security ips ivanti ivanti connect secure ivanti policy secure mitigations policy products security vulnerabilities zero-day zero-day flaws