CVE-2023-38043

Name of the Vulnerable Software and Affected Versions Ivanti Secure Access Client versions prior to 22.6R1.1

Description A vulnerability exists in the Ivanti Secure Access Client, which could allow a locally authenticated attacker to exploit a vulnerable configuration. This could potentially lead to a denial of service (DoS) condition on the user machine and, in some cases, result in a full compromise of the system.

Recommendations For versions prior to 22.6R1.1, update to version 22.6R1.1 or later to resolve the issue. As a temporary workaround, consider restricting access to vulnerable configurations until a patch is applied.