all InfoSec news
Multiple Vulnerabilities in Ivanti Products Could Allow for Remote Code Execution
Center for Internet Security - Multi-State Information Sharing and Analysis Center www.cisecurity.org
Multiple Vulnerabilities have been discovered in Ivanti Products, the most severe of which could allow for remote code execution.
- Ivanti Connect Secure is a SSL VPN solution for remote and mobile users.
- Ivanti Policy Secure (IPS) is a network access control (NAC) solution which provides network access only to authorized and secured users and devices.
- Ivanti Neurons for Zero Trust Access (nZTA) creates a secure connection from a device to web-based applications on-premises and in the cloud
Successful exploitation could …
access access control a network code code execution connect control ips ivanti ivanti connect secure ivanti policy secure mobile nac network network access network access control policy products remote code remote code execution solution ssl ssl vpn vpn vulnerabilities