-
Notifications
You must be signed in to change notification settings - Fork 33
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Updated content to match the Template.
- Loading branch information
Showing
1 changed file
with
8 additions
and
11 deletions.
There are no files selected for viewing
19 changes: 8 additions & 11 deletions
19
docs/advisories/20240904001-Ivanti-Critical-Vulnerability-PoC-Published.md
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,26 +1,23 @@ | ||
| # Ivanti Critical Vulnerability PoC Published - 20240904001 | ||
|
|
||
| ## Overview | ||
|
|
||
| Ivanti released updates for Ivanti Virtual Traffic Manager (vTM) which addressed a critical vulnerability. Successful exploitation could lead to authentication bypass and creation of an administrator user. | ||
|
|
||
| ## What is vulnerable? | ||
|
|
||
| | Product Name | Affected Version(s) | Resolved Version(s) | Patch Availability | | ||
| | ------------------------------ | ------------------- | ------------------- | ----------------------------------------------------------------- | | ||
| | Ivanti Virtual Traffic Manager | 22.2 | 22.2R1 | [Available](https://portal.ivanti.com/customer/product-downloads) | | ||
| | Ivanti Virtual Traffic Manager | 22.3 | 22.3R3 | [Available](https://portal.ivanti.com/customer/product-downloads) | | ||
| | Ivanti Virtual Traffic Manager | 22.3R2 | 22.3R3 | [Available](https://portal.ivanti.com/customer/product-downloads) | | ||
| | Ivanti Virtual Traffic Manager | 22.5R1 | 22.5R2 | [Available](https://portal.ivanti.com/customer/product-downloads) | | ||
| | Ivanti Virtual Traffic Manager | 22.6R1 | 22.6R2 | [Available](https://portal.ivanti.com/customer/product-downloads) | | ||
| | Ivanti Virtual Traffic Manager | 22.7R1 | 22.7R2 | [Available](https://portal.ivanti.com/customer/product-downloads) | | ||
| | Product(s) Affected | Version(s) | CVE # | CVSS v4/v3 | Severity | | ||
| | --- | --- | --- | --- | --- | | ||
| | Ivanti Virtual Traffic Manager | 22.2 < 22.2R1 <br> 22.3 < 22.3R3 <br>22.3R2 < 22.3R3 <br> 22.5R1 < 22.5R2 <br> 22.6R1 < 22.6R2 <br> 22.7R1 < 22.7R2 | [CVE-2024-7593](https://nvd.nist.gov/vuln/detail/CVE-2024-7593) | 9.8 | Critical | | ||
|
|
||
| ## What has been observed? | ||
|
|
||
| Ivanti is not aware of any customers being exploited by this vulnerability at the time of disclosure, however a Proof of Concept is publicly available. | ||
| There is no evidence of exploitation affecting Western Australian Government networks at the time of publishing. | ||
|
|
||
| ## Recommendation | ||
|
|
||
| The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframe (refer [Patch Management](../guidelines/patch-management.md)): | ||
| The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframe of *48 hours...* (refer [Patch Management](../guidelines/patch-management.md)): | ||
|
|
||
| ## Reference | ||
| - Vendor article: <https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Virtual-Traffic-Manager-vTM-CVE-2024-7593?language=en_US> | ||
|
|
||
| - [Security Advisory: Ivanti Virtual Traffic Manager (vTM ) (CVE-2024-7593)](https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Virtual-Traffic-Manager-vTM-CVE-2024-7593?language=en_US) |