Check Point Reference: |
CPAI-2024-0035 |
Date Published: |
4 Feb 2024 |
Severity: |
High
|
Last Updated: |
Sunday 04 February, 2024 |
Source: |
|
Industry Reference: | CVE-2024-21893
|
Protection Provided by: |
Security Gateway R81, R80, R77, R75 |
Who is Vulnerable? | Ivanti Connect Secure versions 9.x Ivanti Connect Secure versions 22.x Ivanti Policy Secure versions 9.x Ivanti Policy Secure versions 22.x |
Vulnerability Description |
A server-side request forgery vulnerability exists in Ivanti. Successful exploitation of this vulnerability could allow an unauthenticated attacker to make a request to any internal and external server. |