topic One of two new high-severity bugs in Ivanti exploited in the wild in Threats https://community.isc2.org/t5/Threats/One-of-two-new-high-severity-bugs-in-Ivanti-exploited-in-the/m-p/66874#M1066 <P>Dear all,</P><P>&nbsp;</P><P><SPAN>Ivanti has released patches to address two vulnerabilities disclosed in January: CVE-2023-46805 (an authentication bypass issue) and CVE-2024-21887 (a command injection issue). Those flaws affect Connect Secure and Policy Secure; the patches fix the vulnerabilities in some but not all affected versions of the products. Ivanti has also disclosed two new zero-day vulnerabilities, one of which is being actively exploited.</SPAN></P><P>&nbsp;</P><P><SPAN><A href="https://www.scmagazine.com/news/one-of-two-new-high-severity-bugs-in-ivanti-exploited-in-the-wild?is=2e17210a000df3b23714ee0b7fabf90d53a139a7fd871f741a8f77fe7ad94a1a" target="_blank">https://www.scmagazine.com/news/one-of-two-new-high-severity-bugs-in-ivanti-exploited-in-the-wild?is=2e17210a000df3b23714ee0b7fabf90d53a139a7fd871f741a8f77fe7ad94a1a</A></SPAN></P><P>&nbsp;</P><P>&nbsp;</P> Sat, 03 Feb 2024 13:29:17 GMT Kyaw_Myo_Oo 2024-02-03T13:29:17Z One of two new high-severity bugs in Ivanti exploited in the wild https://community.isc2.org/t5/Threats/One-of-two-new-high-severity-bugs-in-Ivanti-exploited-in-the/m-p/66874#M1066 <P>Dear all,</P><P>&nbsp;</P><P><SPAN>Ivanti has released patches to address two vulnerabilities disclosed in January: CVE-2023-46805 (an authentication bypass issue) and CVE-2024-21887 (a command injection issue). Those flaws affect Connect Secure and Policy Secure; the patches fix the vulnerabilities in some but not all affected versions of the products. Ivanti has also disclosed two new zero-day vulnerabilities, one of which is being actively exploited.</SPAN></P><P>&nbsp;</P><P><SPAN><A href="https://www.scmagazine.com/news/one-of-two-new-high-severity-bugs-in-ivanti-exploited-in-the-wild?is=2e17210a000df3b23714ee0b7fabf90d53a139a7fd871f741a8f77fe7ad94a1a" target="_blank">https://www.scmagazine.com/news/one-of-two-new-high-severity-bugs-in-ivanti-exploited-in-the-wild?is=2e17210a000df3b23714ee0b7fabf90d53a139a7fd871f741a8f77fe7ad94a1a</A></SPAN></P><P>&nbsp;</P><P>&nbsp;</P> Sat, 03 Feb 2024 13:29:17 GMT https://community.isc2.org/t5/Threats/One-of-two-new-high-severity-bugs-in-Ivanti-exploited-in-the/m-p/66874#M1066 Kyaw_Myo_Oo 2024-02-03T13:29:17Z