Lucene search
K

Pulse Connect Secure < 22.7R2.3 Multiple Vulnerabilities (000096001)

🗓️ 15 Nov 2024 00:00:00Reported by TenableType 
nessus
 nessus
🔗 www.tenable.com👁 23 Views

Pulse Connect Secure < 22.7R2.3 has multiple vulnerabilities impacting security and functionality.

Related
Refs
Code
ReporterTitlePublishedViews
Family
BDU FSTEC
The vulnerability of the IPSec component of the Ivanti Connect Secure network access control tool allows a hacker to trigger a service failure.
5 Mar 202500:00
bdu_fstec
BDU FSTEC
The vulnerability of Ivanti Connect Secure and Ivanti Policy Secure, which are network access control tools, stems from buffer overflow in the stack. This allows a malicious user to trigger a service failure.
5 Mar 202500:00
bdu_fstec
BDU FSTEC
The vulnerability of Ivanti Connect Secure and Ivanti Policy Secure, which are network access control tools, stems from insecure privilege management. This allows attackers to elevate their privileges.
5 Mar 202500:00
bdu_fstec
BDU FSTEC
The vulnerability of the Ivanti Connect Secure network access control tool lies in the reading of data outside the permitted range in memory, allowing a intruder to trigger a service failure.
5 Mar 202500:00
bdu_fstec
BDU FSTEC
The vulnerability of Ivanti Connect Secure and Ivanti Policy Secure, which are network access control tools, stems from buffer overflow in the stack. This allows a malicious user to trigger a service failure.
6 May 202500:00
bdu_fstec
Broadcom
Security Advisory Ivanti Connect Secure (ICS), Ivanti Policy Secure (IPS), Ivanti Secure Access Client (ISAC) (Multiple CVEs)
3 Feb 202500:00
broadcom
Circl
CVE-2024-37400
13 Nov 202403:37
circl
Circl
CVE-2024-47909
12 Nov 202418:03
circl
Circl
CVE-2024-9420
12 Nov 202418:03
circl
CNNVD
Ivanti Connect Secure 安全漏洞
12 Nov 202400:00
cnnvd
Rows per page
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(211453);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/01/23");

  script_cve_id(
    "CVE-2024-9420",
    "CVE-2024-37400",
    "CVE-2024-47905",
    "CVE-2024-47906",
    "CVE-2024-47907",
    "CVE-2024-47909"
  );
  script_xref(name:"IAVA", value:"2024-A-0736-S");

  script_name(english:"Pulse Connect Secure < 22.7R2.3 Multiple Vulnerabilities (000096001)");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"The version of Pulse Connect Secure installed on the remote host is prior to 22.7R2.3. It is, therefore, affected by
multiple vulnerabilities as referenced in the 000096001 advisory.

  - An out of bounds read in Ivanti Connect Secure before version 22.7R2.3 allows a remote unauthenticated
    attacker to trigger an infinite loop, causing a denial of service. (CVE-2024-37400)

  - A use-after-free in Ivanti Connect Secure before version 22.7R2.3 and Ivanti Policy Secure before version
    22.7R1.2 allows a remote authenticated attacker to achieve remote code execution. (CVE-2024-9420)

  - Excessive binary privileges in Ivanti Connect Secure which affects versions 22.4R2 through 22.7R2.2
    inclusive within the R2 release line and Ivanti Policy Secure before version 22.7R1.2 allow a local
    authenticated attacker to escalate privileges. (CVE-2024-47906)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  # https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Connect-Secure-ICS-Ivanti-Policy-Secure-IPS-Ivanti-Secure-Access-Client-ISAC-Multiple-CVEs
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?a16fc73a");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Pulse Connect Secure version 22.7R2.3 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-9420");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2024/11/12");
  script_set_attribute(attribute:"patch_publication_date", value:"2024/10/14");
  script_set_attribute(attribute:"plugin_publication_date", value:"2024/11/15");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:pulsesecure:pulse_connect_secure");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2024-2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("pulse_connect_secure_detect.nbin");
  script_require_keys("installed_sw/Pulse Connect Secure");

  exit(0);
}

include('vcf.inc');

var app_info = vcf::combined_get_app_info(app:'Pulse Connect Secure');

var constraints = [
  { 'fixed_version' : '22.7.2.3431', 'fixed_display' : '22.7R2.3' }
];

vcf::check_version_and_report(
    app_info:app_info,
    constraints:constraints,
    severity:SECURITY_HOLE
);

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

23 Jan 2025 00:00Current
8High risk
Vulners AI Score8
CVSS 37.5
CVSS 3.18.8
EPSS0.02014
SSVC
23