CVE-2024-21887

CRITICAL9.1

CISA KEVRansomwarePublic PoCTrendingHigh EPSS

Description

A command injection vulnerability in web components of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) allows an authenticated administrator to send specially crafted requests and execute arbitrary commands on the appliance.

CVSS breakdown

CVSS 3.0

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

Affected products

Ivanti / ICS9.1R18 – 9.1R18
Ivanti / ICS22.6R2 – 22.6R2
Ivanti / IPS9.1R18 – 9.1R18
Ivanti / IPS22.6R1 – 22.6R1

Exploits & PoCs

nucleiIvanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) - Command Injectionby pdresearch,parthmalhotra,iamnoooob

References

MISChttps://forums.ivanti.com/s/article/CVE-2023-46805-Authentication-Bypass-CVE-2024-21887-Command-Injection-for-Ivanti-Connect-Secure-and-Ivanti-Policy-Secure-Gateways?language=en_US
EXPLOIThttp://packetstormsecurity.com/files/176668/Ivanti-Connect-Secure-Unauthenticated-Remote-Code-Execution.html