Ivanti Gateways Under Attack by Cybercriminals Patch Now

Summary:

Cyber threat actors have been exploiting vulnerabilities in Ivanti Connect Secure and Ivanti Policy Secure gateways, including CVE-2023-46805, CVE-2024-21887, and CVE-2024-21893, which allow them to bypass authentication and execute arbitrary commands with elevated privileges. Despite Ivanti’s mitigation efforts, threat actors persist, emphasizing the need for immediate patching to protect against these potential exploitation risks.

Threat Level – Red | Attack Report

For a detailed threat advisory, download the pdf file here

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.