3 matches found
Ivanti CSA 操作系统命令注入漏洞
Ivanti CSA is a locally deployed virtual appliance designed to simplify and enhance the integration of Ivanti products with cloud services. The Ivanti CSA suffers from an OS command injection vulnerability that stems from the application failing to properly filter constructed command special...
CVE-2024-8190
An OS command injection vulnerability in Ivanti Cloud Services Appliance versions 4.6 Patch 518 and before allows a remote authenticated attacker to obtain remote code execution. The attacker must have admin level privileges to exploit this vulnerability...
The vulnerability of the web console of the automation process management tool for IT services, Ivanti Cloud Services Appliance, allows a hacker to execute arbitrary SQL queries.
The vulnerability of the web console of the Ivanti Cloud Services Appliance, which is used for automating IT service management processes, relates to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL querie...