PT-2023-28060 · Ivanti · Ivanti Connect Secure

CVE-2023-41719

·

Published

2023-12-13

·

Updated

2024-03-26

CVSS v3.1

7.2

High

VectorAV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Ivanti Connect Secure versions prior to 22.6R2
Description A vulnerability exists where an attacker impersonating an administrator may craft a specific web request which may lead to remote code execution.
Recommendations For versions prior to 22.6R2, update to version 22.6R2 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

Related Identifiers

CVE-2023-41719

Affected Products

Ivanti Connect Secure