CVE-2023-38551

Name of the Vulnerable Software and Affected Versions: Ivanti Connect Secure versions 9.x through 9.x Ivanti Connect Secure versions 22.x through 22.x

Description: The issue is related to a CRLF Injection vulnerability. This vulnerability can be exploited by a remote attacker using specially crafted data containing CRLF characters, potentially allowing the execution of arbitrary code. The vulnerability also allows an authenticated high-privileged user to inject malicious code on a victim's browser, leading to a cross-site scripting attack.

Recommendations: For Ivanti Connect Secure versions 9.x, update to a version that includes a fix for the CRLF Injection vulnerability. For Ivanti Connect Secure versions 22.x, update to a version that includes a fix for the CRLF Injection vulnerability. As a temporary workaround, consider restricting access to the CRLF injection functionality until a patch is available. Avoid using the CRLF sequence in the affected API endpoints until the issue is resolved.