all InfoSec news
CVE-2024-21893: New Ivanti Zero-Day Vulnerability Actively Exploited
Malware Analysis, News and Indicators - Latest topics malware.news
On January 31, 2024, Ivanti published an article disclosing two high severity vulnerabilities: CVE-2024-21893: A server-side request forgery flaw present in the SAML component of Ivanti Connect Secure, Ivanti Policy Secure, and Ivanti Neurons. This vulnerability allows an unauthenticated threat actor to access restricted resources. Ivanti reports that a limited number of customers have been … CVE-2024-21893: New Ivanti Zero-Day Vulnerability Actively Exploited
Article Link: CVE-2024-21893 | Arctic Wolf
1 post - 1 participant
access actively exploited actor article connect customers cve cve-2024-21893 exploited flaw forgery high ivanti ivanti connect secure ivanti neurons ivanti policy secure january policy reports request resources restricted saml server server-side request forgery severity threat threat actor unauthenticated vulnerabilities vulnerability zero-day zero-day vulnerability