Lucene search
IvantiCVELIST:CVE-2024-8963HistorySep 19, 2024 - 5:14 p.m.
CVE-2024-8963
2024-09-1917:14:49
CWE-22
ivanti
www.cve.org
2
path traversal
ivanti csa
patch 519
remote attacker
CVSS3
9.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
EPSS
0.631
Percentile
97.9%
Path Traversal in the Ivanti CSA before 4.6 Patch 519 allows a remote unauthenticated attacker to access restricted functionality.
CNA Affected
[
{
"defaultStatus": "affected",
"product": "CSA (Cloud Services Appliance)",
"vendor": "Ivanti",
"versions": [
{
"status": "unaffected",
"version": "4.6 Patch 519",
"versionType": "custom"
},
{
"status": "unaffected",
"version": "5.0",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-8963
2024-09-19 18:15:10
cve
cve
CVE-2024-8963
2024-09-19 18:15:10
vulnrichment
vulnrichment
CVE-2024-8963
2024-09-19 17:14:49
ics
ics
CISA Adds One Known Exploited Vulnerability to Catalog
2024-09-19 12:00:00
nessus
nessus
thn
thn
cisa_kev
cisa_kev
Ivanti Cloud Services Appliance (CSA) Path Traversal Vulnerability
2024-09-19 00:00:00
CVSS3
9.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
EPSS
0.631
Percentile
97.9%
Related for CVELIST:CVE-2024-8963