Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-9381

Path traversal in Ivanti CSA before version 5.0.2 allows a remote authenticated attacker with admin privileges to bypass restrictions.

Published

2024-10-08T17:15:57.183

Last Modified

2024-10-16T13:30:34.740

Status

Analyzed

Source

3c1d8aa1-5a33-4ea4-8992-aadd6440af75

Severity

CVSSv3.1: 7.2 (HIGH)

Weaknesses
  • Type: Secondary
    CWE-22
  • Type: Primary
    CWE-22
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application ivanti endpoint_manager_cloud_services_appliance < 5.0.2 Yes
References