all InfoSec news
Recent SSRF Flaw in Ivanti VPN Products Undergoes Mass Exploitation
Feb. 6, 2024, 6:58 a.m. | info@thehackernews.com (The Hacker News)
The Hacker News thehackernews.com
The Shadowserver Foundation said it observed exploitation attempts originating from more than 170 unique IP addresses that aim to establish a reverse shell, among others.
The attacks exploit CVE-2024-21893 (CVSS
addresses aim attacks connect cve cve-2024-21893 exploit exploitation flaw forgery foundation ip addresses ivanti ivanti connect secure ivanti vpn policy products request reverse reverse shell server server-side request forgery shadowserver shell ssrf under vpn vulnerability
More from thehackernews.com / The Hacker News
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
Application Security Engineer - Remote Friendly
@ Unit21 | San Francisco,CA; New York City; Remote USA;
Cloud Security Specialist
@ AppsFlyer | Herzliya
Malware Analysis Engineer - Canberra, Australia
@ Apple | Canberra, Australian Capital Territory, Australia
Product CISO
@ Fortinet | Sunnyvale, CA, United States
Manager, Security Engineering
@ Thrive | United States - Remote