Ivanti Connect Secure 9.x, 22.x suffers from a Server-Side Request Forgery.

By crafting a specific HTTP request, a remote attacker could exploit this vulnerability to access certain restricted resources without authentication.

The Ivanti Connect Secure installed on the remote host is 9.x or 22.x. It is, therefore, affected by multiple vulnerabilities:

  - An authentication bypass vulnerability in the web component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy     Secure allows a remote attacker to access restricted resources by bypassing control checks. (CVE-2023-46805)

  - A command injection vulnerability in web components of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure     allows an authenticated administrator to send specially crafted requests and execute arbitrary commands on the     appliance. This vulnerability can be exploited over the internet. (CVE-2024-21887)

  - A privilege escalation vulnerability in web component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure     (9.x, 22.x) allows a user to elevate privileges to that of an administrator. (CVE-2024-21888)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The Ivanti Policy Secure installed on the remote host is 9.x or 22.x. It is, therefore, affected by a server-side request forgery vulnerability in web components of Ivanti Policy Secure (9.x, 22.x) which allows an unauthenticated attacker to send specially crafted requests and have the server interact with untrusted, insecure systems. This vulnerability can be exploited over the internet.

The Ivanti Policy Secure installed on the remote host is 9.x or 22.x. It is, therefore, affected by multiple vulnerabilities:

  - An authentication bypass vulnerability in the web component of Ivanti Policy Secure (9.x, 22.x) and Ivanti Policy     Secure allows a remote attacker to access restricted resources by bypassing control checks. (CVE-2023-46805)

  - A command injection vulnerability in web components of Ivanti Policy Secure (9.x, 22.x) and Ivanti Policy Secure     allows an authenticated administrator to send specially crafted requests and execute arbitrary commands on the     appliance. This vulnerability can be exploited over the internet. (CVE-2024-21887)

  - A privilege escalation vulnerability in web component of Ivanti Policy Secure (9.x, 22.x) and Ivanti Policy Secure     (9.x, 22.x) allows a user to elevate privileges to that of an administrator. (CVE-2024-21888)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The Ivanti Connect Secure installed on the remote host is 9.x or 22.x. It is, therefore, affected by a server-side request forgery vulnerability in web components of Ivanti Connect Secure (9.x, 22.x) which allows an unauthenticated attacker to send specially crafted requests and have the server interact with untrusted, insecure systems. This vulnerability can be exploited over the internet.

The Ivanti Policy Secure installed on the remote host is 9.x or 22.x. It is, therefore, affected by a server-side request forgery vulnerability in web components of Ivanti Policy Secure (9.x, 22.x) which allows an unauthenticated attacker to send specially crafted requests to cause unauthorized command executions. This vulnerability can be exploited over the internet.

The Ivanti Connect Secure installed on the remote host is 9.x or 22.x. It is, therefore, affected by a server-side request forgery vulnerability in web components of Ivanti Connect Secure (9.x, 22.x) which allows an unauthenticated attacker to send specially crafted requests to cause unauthorized command executions. This vulnerability can be exploited over the internet.

ID	Name	Product	Family	Published	Updated	Severity
114196	Ivanti Connect Secure 9.x / 22.x Server-Side Request Forgery	Web App Scanning	Component Vulnerability	2/7/2024	2/7/2024	critical
187908	Ivanti Connect Secure 9.x / 22.x Multiple Vulnerabilities	Nessus	Misc.	1/10/2024	11/15/2024	critical
190061	Ivanti Policy Secure 9.x / 22.x SSRF (CVE-2024-21893)	Nessus	CGI abuses	2/6/2024	11/22/2024	high
190367	Ivanti Policy Secure 9.x / 22.x Multiple Vulnerabilities	Nessus	Misc.	2/9/2024	11/15/2024	critical
190062	Ivanti Connect Secure 9.x / 22.x SSRF (CVE-2024-21893)	Nessus	CGI abuses	2/6/2024	11/22/2024	high
190060	Ivanti Policy Secure 9.x / 22.x SSRF-RCE Chain (CVE-2024-21893)	Nessus	CGI abuses	2/6/2024	11/22/2024	high
190063	Ivanti Connect Secure 9.x / 22.x SSRF-RCE Chain (CVE-2024-21893)	Nessus	CGI abuses	2/6/2024	11/22/2024	high

Detections

Analytics

Plugins Search

critical

critical

high

critical

high

high

high