11 janvier 2024
Warning issued to admins of Ivanti Connect Secure and Policy Secure gateways | IT World Canada News
IT administrators with Ivanti's Connect Secure/Pulse Secure VPNs and Policy Secure gateways are urged to install mitigations immediately. The mitigations are to temporarily deal with two vulnerabilities (CVE-2023-46805, an authentication bypass and CVE-2024-21887, a command injection) that impact all supported versions of these products. If they are chained together, "exploitation does not require authentication and