CVE-2024-8963

Name of the Vulnerable Software and Affected Versions: Ivanti Cloud Services Appliance (CSA) versions before 4.6 Patch 519

Description: The issue is a path traversal vulnerability in the Ivanti Cloud Services Appliance (CSA) that allows a remote unauthenticated attacker to access restricted functionality. This vulnerability is being actively exploited, and it enables unauthenticated attackers to bypass admin authentication and execute arbitrary commands. The estimated number of potentially affected devices worldwide is not specified, but the vulnerability has been added to the Cybersecurity and Infrastructure Security Agency’s (CISA’s) Known Exploited Vulnerabilities Catalog.

Recommendations: To resolve the issue for Ivanti Cloud Services Appliance (CSA) versions before 4.6 Patch 519, patch to version 4.6 Patch 519 or upgrade to version 5.0. As a temporary workaround, consider restricting access to the vulnerable functionality until a patch is available. Additionally, ensure that all systems are up-to-date with the latest security patches, and monitor for any suspicious activity.