Security Advisory

CVE-2024-39710

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-13 01:54:45

Last updated 2024-12-01 18:25:55

Assigner hackerone

State PUBLISHED

Description

Argument injection in Ivanti Connect Secure before version 22.7R2.1 and 9.1R18.7 and Ivanti Policy Secure before version 22.7R1.1 allows a remote authenticated attacker with admin privileges to achieve remote code execution.

← Browse all CVEs View on cve.org ↗