Tag: ivanti
-
Ivanti Patches Critical Vulnerabilities in Endpoint Manager
Ivanti has released patches for multiple vulnerabilities in Endpoint Manager, Cloud Service Appliance, and Workspace Control. The post Ivanti Patches … First seen on securityweek.com Jump to article: www.securityweek.com/ivanti-patches-critical-vulnerabilities-in-endpoint-manager/
-
Exploit Code Available For Critical Ivanti vTM Bug
Ivanti has fixed a critical-severity flaw in its Virtual Traffic Manager (vTM), which if exploited could enable attackers to bypass authentication and… First seen on duo.com Jump to article: duo.com/decipher/exploit-code-available-for-critical-ivanti-vtm-bug
-
Exploit-Versuch auf Ivanti Virtual Traffic Manager-Lücke
First seen on heise.de Jump to article: www.heise.de/news/Angriff-auf-Luecke-in-Ivanti-Virtual-Traffic-Manager-beobachtet-9840329.html
-
Critical Flaw in Ivanti Virtual Traffic Manager Could Allow Rogue Admin Access
Ivanti has rolled out security updates for a critical flaw in Virtual Traffic Manager (vTM) that could be exploited to achieve an authentication bypas… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/critical-flaw-in-ivanti-virtual-traffic.html
-
ProofConcept bereits verfügbar – Kritische Schwachstelle in Ivanti Virtual Traffic Manager
First seen on security-insider.de Jump to article: www.security-insider.de/kritische-sicherheitsluecke-cve-2024-7593-ivanti-virtual-traffic-manager-a-dacac927fd896fa9162c7534da445a1c/
-
Ivanti schließt unter anderem Admin-Lücke in Virtual Traffic Manager
Tags: ivantiFirst seen on heise.de Jump to article: www.heise.de/news/Ivanti-schliesst-unter-anderem-Admin-Luecke-in-Virtual-Traffic-Manager-9834538.html
-
Experts warn of exploit attempt for Ivanti vTM bug
Researchers at the Shadowserver Foundation observed an exploit attempt based on the public PoC for Ivanti vTM bug CVE-2024-7593. Researchers at the Sh… First seen on securityaffairs.com Jump to article: securityaffairs.com/167250/hacking/exploit-attempt-ivanti-vtm-bug.html
-
New infosec products of the week: August 16, 2024
Here’s a look at the most interesting products from the past week, featuring releases from ClearSale, Guardio, Ivanti, Resecurity, and Stellar. Resecu… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/08/16/new-infosec-products-of-the-week-august-16-2024/
-
A PoC exploit code is available for critical Ivanti vTM bug
Ivanti warned of a critical authentication bypass flaw in its Virtual Traffic Manager (vTM) appliances that can allow attackers to create rogue admini… First seen on securityaffairs.com Jump to article: securityaffairs.com/166991/hacking/ivanti-virtual-traffic-manager-flaw.html
-
Ivanti warns of critical vTM auth bypass with public exploit
‹Today, Ivanti urged customers to patch a critical authentication bypass vulnerability impacting Virtual Traffic Manager (vTM) appliances that can let… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/ivanti-warns-of-critical-vtm-auth-bypass-with-public-exploit/
-
Ivanti Patches Critical Vulnerabilities in Neurons for ITSM, Virtual Traffic Manager
Ivanti has released patches for multiple vulnerabilities in Neurons for ITSM, Avalanche, and Virtual Traffic Manager, including critical bugs. The pos… First seen on securityweek.com Jump to article: www.securityweek.com/ivanti-patches-critical-vulnerabilities-in-neurons-for-itsm-virtual-traffic-manager/
-
Schlupfloch für Schadcode in Ivanti Endpoint Manager geschlossen
First seen on heise.de Jump to article: www.heise.de/news/Schadcode-Luecke-bedroht-Ivanti-Endpoint-Manager-9806384.html
-
CISA discloses breach of Chemical Security Assessment Tool
CISA first disclosed the breach in March, which stemmed from Ivanti zero-day vulnerabilities that were first exploited in January by a Chinese nation-… First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366589568/CISA-discloses-breach-of-Chemical-Security-Assessment-Tool
-
CISA says crooks used Ivanti bugs to snoop around high-risk chemical facilities
First seen on theregister.com Jump to article: www.theregister.com/2024/06/25/cisa_ivanti_chemical_facilities/
-
Ivanti Issues Hotfix for High-Severity Endpoint Manager Vulnerability
Ivanti has released a hotfix to address an SQL injection vulnerability in Endpoint Manager (EPM) 2024 flat. The post Ivanti Issues Hotfix for High-Sev… First seen on securityweek.com Jump to article: www.securityweek.com/ivanti-issues-hotfix-for-high-severity-endpoint-manager-vulnerability/
-
CISA Takedown of Ivanti Systems Is a Wake-up Call
The exploitation of vulnerabilities in Ivanti’s software underscores the need for robust cybersecurity measures and proactive response strategies to m… First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/cisa-takedown-ivanti-systems-is-wake-up-call
-
Ivanti State of Cybersecurity Report 2024 – In deutschen Unternehmen fehlt IT-Sicherheitswissen
First seen on security-insider.de Jump to article: www.security-insider.de/it-sicherheit-deutschen-unternehmen-2024-a-d352837f0441b22d3503052be2b9983f/
-
UNC3886 Uses Fortinet, VMware 0-Days and Stealth Tactics in Long-Term Spying
The China-nexus cyber espionage actor linked to the zero-day exploitation of security flaws in Fortinet, Ivanti, and VMware devices has been observed … First seen on thehackernews.com Jump to article: thehackernews.com/2024/06/chinese-cyber-espionage-group-exploits.html
-
Ivanti Endpoint Manager: Exploit für kritische Lücke aufgetaucht
First seen on heise.de Jump to article: www.heise.de/news/Ivanti-Endpoint-Manager-Exploit-fuer-kritische-Luecke-aufgetaucht-9765685.html
-
Vulnerability Recap 6/18/24 Patch Tuesday, Plus More Ivanti Issues
First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/vulnerability-recap-june-18-2024/
-
Chemical facilities warned of possible data theft in CISA CSAT breach
CISA is warning that its Chemical Security Assessment Tool (CSAT) environment was breached in January after hackers deployed a webshell on its Ivanti … First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/chemical-facilities-warned-of-possible-data-theft-in-cisa-csat-breach/
-
CISA Confirms Cyberattack on Critical Chemical Security Tool
US Cyber Defense Agency Says Major Cyberattack Result of Vulnerable Ivanti Products. The Cybersecurity and Infrastructure Security Agency confirmed Mo… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/cisa-confirms-cyberattack-on-critical-chemical-security-tool-a-25607
-
Personal and Chemical Facility Information Potentially Accessed in CISA Hack
CISA says CFATS program data was likely accessed after an Ivanti Connect Secure appliance was hacked in January. The post s CFATS program data was lik… First seen on securityweek.com Jump to article: www.securityweek.com/personal-and-facility-information-potentially-accessed-in-cisa-hack/
-
PoC Exploit Emerges for Critical RCE Bug in Ivanti Endpoint Manager
First seen on darkreading.com Jump to article: www.darkreading.com/application-security/poc-exploit-critical-rce-bug-ivanti-endpoint-manager
-
Chinese Cyber Espionage Group Exploits Fortinet, Ivanti and VMware Zero-Days
The China-nexus cyber espionage actor linked to the zero-day exploitation of security flaws in Fortinet, Ivanti, and VMware devices has been observed … First seen on thehackernews.com Jump to article: thehackernews.com/2024/06/chinese-cyber-espionage-group-exploits.html
-
Ivanti EPM SQL Injection Flaw Let Attackers Execute Remote Code
In May 24, 2024, Zero-Day Initiative released a security advisory for Ivanti EPM which was associated with SQL injection Remote code execution vulnera… First seen on gbhackers.com Jump to article: gbhackers.com/ivanti-epm-sql-injection-rce-vulnerability/
-
Security Researchers Expose Critical Flaw in Ivanti Software
Ivanti Faces Another SQL Injection Flaw in Popular Endpoint Manager Product. Security researchers have discovered another major vulnerability in Ivant… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/security-researchers-expose-critical-flaw-in-ivanti-software-a-25524
-
CVE-2024-29824 Deep Dive: Ivanti EPM SQL Injection Remote Code Execution Vulnerability
Introduction Ivanti Endpoint Manager (EPM) is an enterprise endpoint management solution that allows for centralized management of devices within an o… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/06/cve-2024-29824-deep-dive-ivanti-epm-sql-injection-remote-code-execution-vulnerability/
-
Supportende: Rechte-Sicherheitslücke gefährdet Ivanti Endpoint Manager 2021
First seen on heise.de Jump to article: www.heise.de/news/Supportende-Rechte-Sicherheitsluecke-gefaehrdet-Ivanti-Endpoint-Manager-2021-9738243.html