CVE-2024-9844 | Ivanti Connect Secure up to 22.7R2.3 Secure Application Manager client-side enforcement of server-side security

Inserito da Angelo Barbosa | Dic 10, 2024 | CVE

A vulnerability has been found in Ivanti Connect Secure up to 22.7R2.3 and classified as critical. This vulnerability affects unknown code of the component Secure Application Manager. The manipulation leads to client-side enforcement of server-side security.

This vulnerability was named CVE-2024-9844. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-9844 | Ivanti Connect Secure up to 22.7R2.3 Secure Application Manager client-side enforcement of server-side security

Post correlati

CVE-2024-1754 | NPS computy Plugin up to 2.7.5 on WordPress Setting cross site scripting

CVE-2024-51576 | WPZA AMP Img Shortcode Plugin up to 1.0.1 on WordPress cross site scripting

CVE-2024-48652 | Camaleon CMS 2.7.5 content group name cross site scripting

CVE-2024-36124 | dain snappy up to 0.4 Decompression sun.misc.Unsafe out-of-bounds (GHSA-8wh2-6qhj-h7j9)