"Urgent: Mass-Exploited Ivanti VPN Flaw Requires Immediate Patching"

February 9, 2024 at 03:35 AM

•

1 min read

"Urgent: Mass-Exploited Ivanti VPN Flaw Requires Immediate Patching" — Photo: The Hacker News

TL;DR Summary

Ivanti has disclosed a high-severity security flaw, CVE-2024-22024, affecting its Connect Secure, Policy Secure, and ZTA gateway devices, allowing attackers to bypass authentication. The company has released patches for the affected versions and urges users to apply them promptly, emphasizing the importance of addressing multiple security weaknesses that have surfaced this year. While there is no evidence of active exploitation, users are advised to take swift action due to the potential for broad abuse of these vulnerabilities.

Topics:business #authentication-bypass #cve-2024-22024 #cybersecurity #ivanti #patch #security-flaw

Share this article

Warning: New Ivanti Auth Bypass Flaw Affects Connect Secure and ZTA Gateways The Hacker News
Ivanti: Patch new Connect Secure auth bypass bug immediately BleepingComputer
Joint Statement on Ivanti Connect Secure and Ivanti Policy Secure Vulnerabilities ENISA
Ivanti publishes urgent warning about new vulnerability The Record from Recorded Future News
Researchers say attackers are mass-exploiting new Ivanti VPN flaw TechCrunch

Reading Insights

Total Reads

Unique Readers

Time Saved

1 min

vs 2 min read

Condensed

67%

236 → 77 words

Want the full story? Read the original article

Read on The Hacker News

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights