CVE-2024-37404 – Ivanti Connect Secure Arbitrary Code Execution Vulnerability

CVE ID : CVE-2024-37404

Published : Oct. 18, 2024, 11:15 p.m. | 4 hours, 29 minutes ago

Description : Improper Input Validation in the admin portal of Ivanti Connect Secure before 22.7R2.1 and 9.1R18.9, or Ivanti Policy Secure before 22.7R1.1 allows a remote authenticated attacker to achieve remote code execution.

Severity: 9.1 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…CVE ID : CVE-2024-37404

Published : Oct. 18, 2024, 11:15 p.m. | 4 hours, 29 minutes ago

Description : Improper Input Validation in the admin portal of Ivanti Connect Secure before 22.7R2.1 and 9.1R18.9, or Ivanti Policy Secure before 22.7R1.1 allows a remote authenticated attacker to achieve remote code execution.

Severity: 9.1 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…