Read our Cyfirma Research report, which explores why Ivanti Connect Secure & Policy Secure users, should be cautious of a critical SSRF vulnerability (CVE-2024-21893) which affects your systems, enabling attackers to bypass mitigations and execute remote code. Exploits, like CVE-2023-46805 & CVE-2024-21887, demonstrate the severity.

Ivanti has released a second mitigation and patches to address all vulnerabilities. Ensure your systems are up to date and protected against these threats. Stay vigilant and take action to safeguard your network.

Link to the Research Report: Exploit Analysis: SSRF and Command Injection for Unauthenticated RCE in Ivanti Connect Secure - CYFIRMA

#CyberSecurity #Vulnerability #Ivanti #SSRF #PatchNow # CVE-2023-46805 #CVE-2024-21887 #CVE-2024-21893 #IvantiConnectSecure #CyfirmaResearch #Cyfirma #ExternalThreatLandscapeManagement #ETLM

https://www.cyfirma.com/