Lucene search

HackeroneCVE-2024-22052

HistoryApr 04, 2024 - 8:15 p.m.

CVE-2024-22052

2024-04-0420:15:08

CWE-476

hackerone

web.nvd.nist.gov

cve-2024-22052

ivanti

connect secure

ipsec

null pointer dereference

vulnerability

unauthenticated user

crafted requests

dos attack

nvd

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

6.8

Confidence

Low

EPSS

0.001

Percentile

17.0%

JSON

A null pointer dereference vulnerability in IPSec component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure allows an unauthenticated malicious user to send specially crafted requests in-order-to crash the service thereby causing a DoS attack

Affected configurations

Nvd

Vulners

Vulnrichment

Node

ivanticonnect_secureMatch9.1r1

ivanticonnect_secureMatch9.1r10

ivanticonnect_secureMatch9.1r11

ivanticonnect_secureMatch9.1r11.5

ivanticonnect_secureMatch9.1r12

ivanticonnect_secureMatch9.1r13

ivanticonnect_secureMatch9.1r14lts

ivanticonnect_secureMatch9.1r15

ivanticonnect_secureMatch9.1r16

ivanticonnect_secureMatch9.1r17

ivanticonnect_secureMatch9.1r18

ivanticonnect_secureMatch9.1r2

ivanticonnect_secureMatch9.1r3

ivanticonnect_secureMatch9.1r4

ivanticonnect_secureMatch9.1r4.1

ivanticonnect_secureMatch9.1r4.2

ivanticonnect_secureMatch9.1r4.3

ivanticonnect_secureMatch9.1r5

ivanticonnect_secureMatch9.1r6

ivanticonnect_secureMatch9.1r7

ivanticonnect_secureMatch9.1r8

ivanticonnect_secureMatch9.1r9

ivanticonnect_secureMatch22.1

ivanticonnect_secureMatch22.2

ivanticonnect_secureMatch22.3

ivanticonnect_secureMatch22.4

ivanticonnect_secureMatch22.5

ivanticonnect_secureMatch22.6

ivantipolicy_secureMatch9.0-

ivantipolicy_secureMatch9.0r1

ivantipolicy_secureMatch9.0r2

ivantipolicy_secureMatch9.0r2.1

ivantipolicy_secureMatch9.0r3

ivantipolicy_secureMatch9.0r3.1

ivantipolicy_secureMatch9.0r4

ivantipolicy_secureMatch9.1-

ivantipolicy_secureMatch9.1r1

ivantipolicy_secureMatch9.1r10

ivantipolicy_secureMatch9.1r11

ivantipolicy_secureMatch9.1r12

ivantipolicy_secureMatch9.1r13

ivantipolicy_secureMatch9.1r14

ivantipolicy_secureMatch9.1r15

ivantipolicy_secureMatch9.1r16

ivantipolicy_secureMatch9.1r17

ivantipolicy_secureMatch9.1r18

ivantipolicy_secureMatch9.1r2

ivantipolicy_secureMatch9.1r3

ivantipolicy_secureMatch9.1r4

ivantipolicy_secureMatch9.1r5

ivantipolicy_secureMatch9.1r6

ivantipolicy_secureMatch9.1r7

ivantipolicy_secureMatch9.1r8

ivantipolicy_secureMatch9.1r9

ivantipolicy_secureMatch22.1

ivantipolicy_secureMatch22.2

ivantipolicy_secureMatch22.3

ivantipolicy_secureMatch22.4

ivantipolicy_secureMatch22.5

ivantipolicy_secureMatch22.6

VendorProductVersionCPE
ivanticonnect_secure9.1cpe:2.3:a:ivanti:connect_secure:9.1:r1:*:*:*:*:*:*
ivanticonnect_secure9.1cpe:2.3:a:ivanti:connect_secure:9.1:r10:*:*:*:*:*:*
ivanticonnect_secure9.1cpe:2.3:a:ivanti:connect_secure:9.1:r11:*:*:*:*:*:*
ivanticonnect_secure9.1cpe:2.3:a:ivanti:connect_secure:9.1:r11.5:*:*:*:*:*:*
ivanticonnect_secure9.1cpe:2.3:a:ivanti:connect_secure:9.1:r12:*:*:*:*:*:*
ivanticonnect_secure9.1cpe:2.3:a:ivanti:connect_secure:9.1:r13:*:*:*:*:*:*
ivanticonnect_secure9.1cpe:2.3:a:ivanti:connect_secure:9.1:r14:*:*:lts:*:*:*
ivanticonnect_secure9.1cpe:2.3:a:ivanti:connect_secure:9.1:r15:*:*:*:*:*:*
ivanticonnect_secure9.1cpe:2.3:a:ivanti:connect_secure:9.1:r16:*:*:*:*:*:*
ivanticonnect_secure9.1cpe:2.3:a:ivanti:connect_secure:9.1:r17:*:*:*:*:*:*

Vendor	Product	Version	CPE
ivanti	connect_secure	9.1	cpe:2.3:a:ivanti:connect_secure:9.1:r1::::::
ivanti	connect_secure	9.1	cpe:2.3:a:ivanti:connect_secure:9.1:r10::::::
ivanti	connect_secure	9.1	cpe:2.3:a:ivanti:connect_secure:9.1:r11::::::
ivanti	connect_secure	9.1	cpe:2.3:a:ivanti:connect_secure:9.1:r11.5::::::
ivanti	connect_secure	9.1	cpe:2.3:a:ivanti:connect_secure:9.1:r12::::::
ivanti	connect_secure	9.1	cpe:2.3:a:ivanti:connect_secure:9.1:r13::::::
ivanti	connect_secure	9.1	cpe:2.3:a:ivanti:connect_secure:9.1:r14:::lts:::*
ivanti	connect_secure	9.1	cpe:2.3:a:ivanti:connect_secure:9.1:r15::::::
ivanti	connect_secure	9.1	cpe:2.3:a:ivanti:connect_secure:9.1:r16::::::
ivanti	connect_secure	9.1	cpe:2.3:a:ivanti:connect_secure:9.1:r17::::::

Rows per page:

1-10 of 601

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "vendor": "Ivanti",
    "product": "Connect Secure",
    "versions": [
      {
        "version": "22.1R6.2",
        "status": "affected",
        "lessThan": "22.1R6.2",
        "versionType": "semver"
      },
      {
        "version": "22.2R4.2",
        "status": "affected",
        "lessThan": "22.2R4.2",
        "versionType": "semver"
      },
      {
        "version": "22.3R1.2",
        "status": "affected",
        "lessThan": "22.3R1.2",
        "versionType": "semver"
      },
      {
        "version": "22.4R1.2",
        "status": "affected",
        "lessThan": "22.4R1.2",
        "versionType": "semver"
      },
      {
        "version": "22.4R2.4",
        "status": "affected",
        "lessThan": "22.4R2.4",
        "versionType": "semver"
      },
      {
        "version": "22.5R1.3",
        "status": "affected",
        "lessThan": "22.5R1.3",
        "versionType": "semver"
      },
      {
        "version": "22.5R2.4",
        "status": "affected",
        "lessThan": "22.5R2.4",
        "versionType": "semver"
      },
      {
        "version": "22.6R2.3",
        "status": "affected",
        "lessThan": "22.6R2.3",
        "versionType": "semver"
      },
      {
        "version": "9.1R14.6",
        "status": "affected",
        "lessThan": "9.1R14.6",
        "versionType": "semver"
      },
      {
        "version": "9.1R15.4",
        "status": "affected",
        "lessThan": "9.1R15.4",
        "versionType": "semver"
      },
      {
        "version": "9.1R16.4",
        "status": "affected",
        "lessThan": "9.1R16.4",
        "versionType": "semver"
      },
      {
        "version": "9.1R17.4",
        "status": "affected",
        "lessThan": "9.1R17.4",
        "versionType": "semver"
      },
      {
        "version": "9.1R18.5",
        "status": "affected",
        "lessThan": "9.1R18.5",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "vendor": "Ivanti",
    "product": "Policy Secure",
    "versions": [
      {
        "version": "22.4R1.2",
        "status": "affected",
        "lessThan": "22.4R1.2",
        "versionType": "semver"
      },
      {
        "version": "22.5R1.3",
        "status": "affected",
        "lessThan": "22.5R1.3",
        "versionType": "semver"
      },
      {
        "version": "22.6R1.2",
        "status": "affected",
        "lessThan": "22.6R1.2",
        "versionType": "semver"
      },
      {
        "version": "9.1R16.4",
        "status": "affected",
        "lessThan": "9.1R16.4",
        "versionType": "semver"
      },
      {
        "version": "9.1R17.4",
        "status": "affected",
        "lessThan": "9.1R17.4",
        "versionType": "semver"
      },
      {
        "version": "9.1R18.5",
        "status": "affected",
        "lessThan": "9.1R18.5",
        "versionType": "semver"
      }
    ]
  }
]

References

forums.ivanti.com/s/article/New-CVE-2024-21894-Heap-Overflow-CVE-2024-22052-Null-Pointer-Dereference-CVE-2024-22053-Heap-Overflow-and-CVE-2024-22023-XML-entity-expansion-or-XXE-for-Ivanti-Connect-Secure-and-Ivanti-Policy-Secure-Gateways?language=en_US

Social References

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

6.8

Confidence

Low

EPSS

0.001

Percentile

17.0%

JSON

Related for CVE-2024-22052