Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-8963

Path Traversal in the Ivanti CSA before 4.6 Patch 519 allows a remote unauthenticated attacker to access restricted functionality.

Published

2024-09-19T18:15:10.600

Last Modified

2024-09-20T16:32:02.563

Status

Analyzed

Source

3c1d8aa1-5a33-4ea4-8992-aadd6440af75

Severity

CVSSv3.1: 9.4 (CRITICAL)

Weaknesses
  • Type: Secondary
    CWE-22
  • Type: Primary
    CWE-22
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application ivanti endpoint_manager_cloud_services_appliance 4.6 Yes
Application ivanti endpoint_manager_cloud_services_appliance 4.6 Yes
Application ivanti endpoint_manager_cloud_services_appliance 4.6 Yes
References