CVE-2024-8963

🗓️ 19 Sep 2024 17:14:49Reported by ivantiType

cve🔗 web.nvd.nist.gov📰️ 5 Media mentions👁 245 Views

Path Traversal vulnerability in Ivanti CS

Reporter	Title	Published	Views	Family All 33
GithubExploit	Exploit for OS Command Injection in Ivanti Cloud_Services_Appliance	4 Mar 202511:34	–	githubexploit
GithubExploit	Exploit for Path Traversal in Ivanti Endpoint_Manager_Cloud_Services_Appliance	13 Nov 202414:12	–	githubexploit
ATTACKERKB	CVE-2024-8963	19 Sep 202400:00	–	attackerkb
Circl	CVE-2024-8963	19 Sep 202421:10	–	circl
ICS	CISA Adds One Known Exploited Vulnerability to Catalog	19 Sep 202412:00	–	ics
CISA KEV Catalog	Ivanti Cloud Services Appliance (CSA) Path Traversal Vulnerability	19 Sep 202400:00	–	cisa_kev
CISA	CISA and FBI Release Advisory on How Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications	22 Jan 202512:00	–	cisa
CISA	CISA Adds One Known Exploited Vulnerability to Catalog	19 Sep 202412:00	–	cisa
CISA	Ivanti Releases Admin Bypass Security Update for Cloud Services Appliance	19 Sep 202412:00	–	cisa
CNNVD	Ivanti Cloud Services Appliance 安全漏洞	19 Sep 202400:00	–	cnnvd

NVD

Vulners

Vulnrichment

Node

ivanti endpoint_manager_cloud_services_applianceMatch4.6-

ivanti endpoint_manager_cloud_services_applianceMatch4.6patch_512

ivanti endpoint_manager_cloud_services_applianceMatch4.6patch_518

[
  {
    "defaultStatus": "affected",
    "product": "CSA (Cloud Services Appliance)",
    "vendor": "Ivanti",
    "versions": [
      {
        "status": "unaffected",
        "version": "4.6 Patch 519",
        "versionType": "custom"
      },
      {
        "status": "unaffected",
        "version": "5.0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
forums	www.forums.ivanti.com/s/article/Security-Advisory-Ivanti-CSA-4-6-Cloud-Services-Appliance-CVE-2024-8963
cisa	www.cisa.gov/known-exploited-vulnerabilities-catalog

24 Oct 2025 13:55Current

7.2High risk

Vulners AI Score7.2

CVSS 3.19.1 - 9.4

EPSS0.94225

SSVC