exploitDog

GHSA-34xq-28mr-q8v9

Опубликовано: 10 дек. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 9.1

Описание

Argument injection in Ivanti Connect Secure before version 22.7R2.4 allows a remote authenticated attacker with admin privileges to achieve remote code execution

Argument injection in Ivanti Connect Secure before version 22.7R2.4 allows a remote authenticated attacker with admin privileges to achieve remote code execution

Ссылки

EPSS

Процентиль: 94%

0.15341

Средний

9.1 Critical

CVSS3

CVE ID

Дефекты

CWE-88

Связанные уязвимости

CVE-2024-11633

CVSS3: 9.1

nvd

около 1 года назад

Argument injection in Ivanti Connect Secure before version 22.7R2.4 allows a remote authenticated attacker with admin privileges to achieve remote code execution

EPSS

Процентиль: 94%

0.15341

Средний

9.1 Critical

CVSS3

CVE ID

Дефекты

CWE-88