CVE-2024-37404 in Connect Secureinfo

Zusammenfassung

von MITRE • 19.10.2024

Improper Input Validation in the admin portal of Ivanti Connect Secure before 22.7R2.1 and 9.1R18.9, or Ivanti Policy Secure before 22.7R1.1 allows a remote authenticated attacker to achieve remote code execution.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Zuständig

Hackerone

Reservieren

08.06.2024

Veröffentlichung

19.10.2024

Moderieren

akzeptiert

Eintrag

VDB-280959

CPE

bereit

EPSS

0.67291

KEV

nein

Aktivitäten

very low

Quellen

Interested in the pricing of exploits?

See the underground prices here!