CVE-2024-8963 PoC — Ivanti Cloud Services Appliance 安全漏洞

Source

https://github.com/patfire94/CVE-2024-8963

Associated Vulnerability

Title:Ivanti Cloud Services Appliance 安全漏洞 (CVE-2024-8963)
Description:Ivanti Cloud Services Appliance（Ivanti CSA）是美国Ivanti公司的一种 Internet 应用程序。可通过 Internet 提供安全的通信和功能。 Ivanti Cloud Services Appliance 4.6 Patch 519之前版本存在安全漏洞，该漏洞源于存在路径遍历，允许远程未经身份验证的攻击者访问受限功能。

Description

Ivanti Cloud Services Appliance - Path Traversal

Readme

# CVE-2024-8963
Ivanti Cloud Services Appliance - Path Traversal
![2024-11-13 14_40_21-Untitled design - 774 × 536px - Brave](https://github.com/user-attachments/assets/9258d238-429e-4e67-8912-9cd6950d5957)

Path Traversal in the Ivanti CSA before 4.6 Patch 519 allows a remote unauthenticated attacker to access restricted functionality.

File Snapshot


 [4.0K]  /data/pocs/446ba564a16710525148739c8a24fc758f36df90
├── [1.6K]  CVE-2024-8963.py
└── [ 340]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!