CVE-2024-11639

🗓️ 10 Dec 2024 18:54:43Reported by ivantiType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 69 Views

Authentication bypass in Ivanti CSA admin console allows remote access for attackers.

Reporter	Title	Published	Views	Family All 21
Circl	CVE-2024-11639	10 Dec 202419:28	–	circl
CNNVD	Ivanti CSA 安全漏洞	10 Dec 202400:00	–	cnnvd
CNNVD	Ivanti CSA 安全漏洞	10 Dec 202400:00	–	cnnvd
CNNVD	Ivanti CSA 安全漏洞	10 Dec 202400:00	–	cnnvd
CNVD	Ivanti CSA Authentication Bypass Vulnerability	17 Dec 202400:00	–	cnvd
Cvelist	CVE-2024-11639	10 Dec 202418:54	–	cvelist
EUVD	EUVD-2024-34195	10 Dec 202418:55	–	euvd
EUVD	EUVD-2024-34196	3 Oct 202520:07	–	euvd
Ivanti	Security Advisory Ivanti Cloud Services Application (CSA) (CVE-2024-11639, CVE-2024-11772, CVE-2024-11773)	10 Dec 202415:00	–	ivanti
Tenable Nessus	Ivanti Endpoint Manager Cloud Services Appliance < 5.0.3 Multiple Vulnerabilities	13 Dec 202400:00	–	nessus

NVD

Vulners

Node

ivanti cloud_services_applianceRange<5.0.3

[
  {
    "defaultStatus": "affected",
    "product": "Cloud Services Application",
    "vendor": "Ivanti",
    "versions": [
      {
        "status": "unaffected",
        "version": "5.0.3",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
forums	www.forums.ivanti.com/s/article/Security-Advisory-Ivanti-Cloud-Services-Application-CSA-CVE-2024-11639-CVE-2024-11772-CVE-2024-11773

17 Jan 2025 19:40Current

9.8High risk

Vulners AI Score9.8

CVSS 3.19.8 - 10

EPSS0.08127

SSVC