Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Insufficient server-side controls in Secure Application Manager of Ivanti Connect Secure before version 22.7R2.4 allows a remote authenticated attacker to bypass restrictions.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N
Vulnerability Type
服务端安全的客户端实施
Vulnerability Title
Ivanti Connect Secure 安全漏洞
Vulnerability Description
Ivanti Connect Secure是美国Ivanti公司的安全远程网络连接工具。 Ivanti Connect Secure 22.7R2.4之前版本存在安全漏洞,该漏洞源于Secure Application Manager中服务器端控制不足。攻击者利用该漏洞可以绕过限制。
CVSS Information
N/A
Vulnerability Type
N/A