6 matches found
CVE-2024-38657
External control of a file name in Ivanti Connect Secure before version 22.7R2.4 and Ivanti Policy Secure before version 22.7R1.3 allows a remote authenticated attacker with admin privileges to write arbitrary files...
CVE-2024-38657
External control of a file name in Ivanti Connect Secure before version 22.7R2.4 and Ivanti Policy Secure before version 22.7R1.3 allows a remote authenticated attacker with admin privileges to write arbitrary files...
CVE-2024-38657
External control of a file name in Ivanti Connect Secure before version 22.7R2.4 and Ivanti Policy Secure before version 22.7R1.3 allows a remote authenticated attacker with admin privileges to write arbitrary files...
CVE-2024-38657
CVE-2024-38657 affects Ivanti Connect Secure not newer than 22.7R2.4 and Ivanti Policy Secure not newer than 22.7R1.3. A remote authenticated attacker with admin privileges can write arbitrary files via external control of a file name. Remediation: update to supported fixed versions (ICS 22.7R2.4...
CVE-2024-38657
External control of a file name in Ivanti Connect Secure before version 22.7R2.4 and Ivanti Policy Secure before version 22.7R1.3 allows a remote authenticated attacker with admin privileges to write arbitrary files...
CVE-2024-38657
creationtimestamp| type| source ---|---|--- 2025-02-11 19:05:13+00:00| seen| https://vulnerability.circl.lu/bundle/85f9fd3a-b2ef-443b-b091-2cad7418236f 2025-02-11 19:13:31+00:00| seen| https://social.circl.lu/users/cedric/statuses/113986844143593949 2025-02-12 04:00:00+00:00| seen|...