Jan. 31, 2024, 5:46 p.m. |

Center for Internet Security - Multi-State Information Sharing and Analysis Center www.cisecurity.org

Multiple Vulnerabilities have been discovered in Ivanti Products, the most severe of which could allow for remote code execution.



  • Ivanti Connect Secure is a SSL VPN solution for remote and mobile users.

  • Ivanti Policy Secure (IPS) is a network access control (NAC) solution which provides network access only to authorized and secured users and devices.

  • Ivanti Neurons for Zero Trust Access (nZTA) creates a secure connection from a device to web-based applications on-premises and in the cloud

    Successful exploitation could …

access access control a network code code execution connect control ips ivanti ivanti connect secure ivanti policy secure mobile nac network network access network access control policy products remote code remote code execution solution ssl ssl vpn vpn vulnerabilities

More from www.cisecurity.org / Center for Internet Security - Multi-State Information Sharing and Analysis Center

Humbly Confident Security Lead

@ YNAB | Remote

Information Technology Specialist II: Information Security Engineer

@ WBCP, Inc. | Pasadena, CA.

Director of the Air Force Cyber Technical Center of Excellence (CyTCoE)

@ Air Force Institute of Technology | Dayton, OH, USA

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

Cybersecurity Subject Matter Expert

@ QinetiQ US | Washington, DC, United States

Program Cybersecurity Manage (F/M/X)

@ Alstom | Villeurbanne, FR