Lucene search

CVE-2023-38551

🗓️ 31 May 2024 17:31:38Reported by hackeroneType

CRLF Injection in Ivanti Connect Secure allows authenticated user to inject malicious cod

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 8
NVD	CVE-2023-38551	31 May 202418:15	–	nvd
CVE	CVE-2023-38551	31 May 202418:15	–	cve
RedhatCVE	CVE-2023-38551	23 May 202504:08	–	redhatcve
Tenable Nessus	Ivanti Connect Secure 9.x / 22.x XSS Vulnerability	24 May 202400:00	–	nessus
Tenable Nessus	Ivanti Policy Secure 22.x XSS Vulnerability	24 May 202400:00	–	nessus
Vulnrichment	CVE-2023-38551	31 May 202417:38	–	vulnrichment
The Hacker News	Ivanti Patches Critical Remote Code Execution Flaws in Endpoint Manager	23 May 202409:21	–	thn
Ivanti	Security Advisory May 2024	21 May 202414:10	–	ivanti

[
  {
    "defaultStatus": "unaffected",
    "vendor": "Ivanti",
    "product": "Connect Secure",
    "versions": [
      {
        "version": "22.7R2",
        "status": "affected",
        "lessThan": "22.7R2",
        "versionType": "semver"
      },
      {
        "version": "22.5R2.2",
        "status": "affected",
        "lessThan": "22.5R2.2",
        "versionType": "semver"
      },
      {
        "version": "9.1R18.6",
        "status": "affected",
        "lessThan": "9.1R18.6",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
forums	www.forums.ivanti.com/s/article/Security-Advisory-May-2024

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

31 May 2024 17:38Current

7.9High risk

Vulners AI Score7.9

CVSS38.2

EPSS0.0101