CVE-2024-21893 | Ivanti Connect Secure/Policy Secure up to 9.1R18/22.6R2 SAML server-side request forgery

Inserito da Angelo Barbosa | Gen 31, 2024 | CVE

A vulnerability classified as critical has been found in Ivanti Connect Secure and Policy Secure up to 9.1R18/22.6R2. This affects an unknown part of the component SAML. The manipulation leads to server-side request forgery.

This vulnerability is uniquely identified as CVE-2024-21893. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-21893 | Ivanti Connect Secure/Policy Secure up to 9.1R18/22.6R2 SAML server-side request forgery

Post correlati

CVE-2024-24923 | Siemens Simcenter Femap prior 2306.0001/2401.0000 Catia Model File out-of-bounds (ssa-000072)

CVE-2024-43962 | LWS Affiliation Plugin up to 2.3.3 on WordPress authorization

CVE-2024-27282 | Ruby up to 3.0.6/3.1.4/3.2.3/3.3.0 Regex Search heap-based overflow

CVE-2021-47348 | Linux Kernel up to 5.10.50/5.12.17/5.13.2 AMD Display initialization