Ivanti

Ivanti Patches Critical Flaws in Connect Secure and Policy Secure – Update Now – Go Health Pro

by
Ivanti Patches Critical Flaws in Connect Secure and Policy Secure – Update Now – Go Health Pro

Feb 12, 2025Ravie LakshmananNetwork Security / Vulnerability Ivanti has released security updates to address multiple security flaws impacting Connect Secure (ICS), Policy Secure (IPS), and Cloud Services Application (CSA) that could be exploited to achieve arbitrary code execution. The list of vulnerabilities is below – CVE-2024-38657 (CVSS score: 9.1) – External control of a file … Read more

Attacks on Ivanti appliances demonstrate danger of chained exploits – Go Health Pro

by
Attacks on Ivanti appliances demonstrate danger of chained exploits – Go Health Pro

The U.S. government is warning of a new exploit against multiple flaws in cloud applications. The Cybersecurity and Infrastructure Security Agency (CISA) warned that attackers are chaining a number of CVE-listed vulnerabilities into a single exploit script. The flaws in question are present in Ivanti appliances version 4.6 and earlier. The threat actors use the … Read more

Ivanti Zero-Day Vulnerability Exploited: The Details – Go Health Pro

by
Ivanti Zero-Day Vulnerability Exploited: The Details – Go Health Pro

The UK’s National Cyber Security Centre (NCSC) and its US counterpart have issued an urgent advisory to Ivanti customers after discovering two critical vulnerabilities, one of which is actively exploited. Read on to see how the Ivanti Zero-Day Vulnerability was exploited. Details of how the Ivanti Zero-Day Vulnerability was exploited Ivanti released a security advisory … Read more

Emergency patch issued for Ivanti Connect Secure VPN flaw under attack – Go Health Pro

by
Emergency patch issued for Ivanti Connect Secure VPN flaw under attack – Go Health Pro

An unpatched vulnerability in the Ivanti Connect Secure VPN has been under active attack. Researchers with Google’s Mandiant Cloud security team said that one or more threat actors are currently exploiting CVE-2025-0282 for remote takeover attacks on targeted networks. The flaw, originally exploited as a zero-day vulnerability, has since been given an emergency patch and … Read more

Ivanti Issues Critical Security Updates for CSA and Connect Secure Vulnerabilities – Go Health Pro

by
Ivanti Issues Critical Security Updates for CSA and Connect Secure Vulnerabilities – Go Health Pro

Dec 11, 2024Ravie LakshmananVulnerability / Network Security Ivanti has released security updates to address multiple critical flaws in its Cloud Services Application (CSA) and Connect Secure products that could lead to privilege escalation and code execution. The list of vulnerabilities is as follows – CVE-2024-11639 (CVSS score: 10.0) – An authentication bypass vulnerability in the … Read more

x