Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

Ivanti XML External Entity Injection (CVE-2024-22024)

Related Vulnerabilities: CVE-2024-22024  

Source
Check Point Reference: CPAI-2024-0055 Date Published: 11 Feb 2024 Severity: High Last Updated: Sunday 11 February, 2024 Source: Industry Reference:CVE-2024-22024
Protection Provided by:

Security Gateway
R81, R80, R77, R75

Who is Vulnerable? Ivanti Connect Secure version 9.1R14.4
Ivanti Connect Secure version 9.1R17.2
Ivanti Connect Secure version 9.1R18.3
Ivanti Connect Secure version 22.4R2.2
Ivanti Connect Secure version 22.5R1.1
Ivanti Connect Secure version 22.5R2.2
Ivanti Policy Secure version 22.5R1.1
Ivanti ZTA version 22.6R1.3 Vulnerability Description An XML external entity injection vulnerability exists in Ivanti. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system.

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started