CVE-2024-7570

Name of the Vulnerable Software and Affected Versions Ivanti ITSM on-prem and Neurons for ITSM versions 2023.4 and earlier

Description The issue is related to improper certificate validation, which can be exploited by a remote attacker in a MITM position to create a token that would allow access to ITSM as any user. This can pose a serious threat to user data. The vulnerability is associated with the incorrect implementation of the OpenID Connect protocol.

Recommendations For Ivanti ITSM on-prem and Neurons for ITSM versions 2023.4 and earlier, update to a secure version to resolve the issue. As a temporary workaround, consider restricting access to sensitive areas of ITSM to minimize the risk of exploitation. Additionally, review and strengthen security measures related to certificate validation and MITM attack prevention.