all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

New Ivanti Connect Secure Zero-Day Exploited by Threat Actors

Add to bookmarks
Feb. 6, 2024, 6:04 p.m. | Team Nuspire

Security Boulevard securityboulevard.com

Software company Ivanti has recently raised the alarm about two new vulnerabilities impacting its products: Connect Secure, Policy Secure and ZTA gateways. Read on to learn more.   Tell me more about the Ivanti zero-days   The first of these vulnerabilities, tagged as CVE-2024-21893, is a zero-day flaw that’s currently being actively exploited. This flaw is a server-side request forgery issue in the SAML component of the gateways, which allows attackers to sidestep authentication and gain access to restricted areas on the …

actively exploited alarm blog connect cve cve-2024-21893 exploited flaw gateways ivanti ivanti connect secure learn policy products software threat threat actors vulnerabilities zero-day zero-day flaw zero-days zta

Visit resource

More from securityboulevard.com / Security Boulevard

RSAC 2024 Innovation Sandbox | Antimatter: A Comprehensive Data Security Management Tool 14 hours ago | securityboulevard.com
antimatter benchmark blog conference +24
USENIX Security ’23 – Beyond Typosquatting: An In-depth Look at Package Confusion 1 day ago | securityboulevard.com
access authors beyond conference +19
Breaking Down Cybersecurity: The Real Meaning Behind the Jargon 1 day, 5 hours ago | securityboulevard.com
authenticity availability breaking cia +19
What is General Data Protection Regulation Act (GDPR)? 1 day, 6 hours ago | securityboulevard.com
act adoption center challenges +32
RSAC 2024 Innovation Sandbox | Bedrock Security: A Seamless and Efficient Data Security Solution 1 day, 8 hours ago | securityboulevard.com
bedrock bedrock security benchmark blog +20
Cloud Monitor Automation Improves K-12 Cybersecurity Training & Awareness 1 day, 16 hours ago | securityboulevard.com
automation awareness chief cloud +28
USENIX Security ’23 – UVSCAN: Detecting Third-Party Component Usage Violations in IoT Firmware 1 day, 20 hours ago | securityboulevard.com
access authors conference events +15
Local Privilege Escalation Vulnerability in Ant Media Server (CVE-2024-32656) 1 day, 21 hours ago | securityboulevard.com
ant application customers cve +21
Understanding Cybersecurity Vulnerabilities 1 day, 21 hours ago | securityboulevard.com
advice attacks can cybersecurity +12

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Network Security Engineer

@ Meta | Menlo Park, CA | Remote, US
View on infosec-jobs.com

Security Engineer, Investigations - i3

@ Meta | Washington, DC
View on infosec-jobs.com

Threat Investigator- Security Analyst

@ Meta | Menlo Park, CA | Seattle, WA | Washington, DC
View on infosec-jobs.com

Security Operations Engineer II

@ Microsoft | Redmond, Washington, United States
View on infosec-jobs.com

Engineering -- Tech Risk -- Global Cyber Defense & Intelligence -- Bug Bounty -- Associate -- Dallas

@ Goldman Sachs | Dallas, Texas, United States
View on infosec-jobs.com
View more jobs