iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
Ivanti says active exploitation is already being observed, while the ACSC recommends an immediate upgrade.
The Australian Signals Directorate’s Australian Cyber Security Centre has flashed out a CRITICAL ALERT: ACT NOW notice warning of a dangerous vulnerability in Ivanti CSA 4.6, a cloud service appliance.
CVE-2024-8963 allows administrative bypass/path traversal in versions of Ivanti CSA 4.6 prior to patch 519.
According to Ivanti, the company is “aware of a limited number of customers who have been exploited by this vulnerability”.
Exploitation of the vulnerability could lead to unauthenticated threat actors achieving access to restricted functionality on the impacted appliance.
However, the vulnerability can be used in tandem with another CVE.
“If CVE-2024-8963 is used in conjunction with CVE-2024-8190, an attacker can bypass admin authentication and execute arbitrary commands on the appliance,” Ivanti said in its 19 September security advisory.
Both Ivanti and the ACSC note that Ivanti CSA 4.6 has now reached end-of-life and recommend users upgrade to CSA 5.0 immediately.
David Hollingworth has been writing about technology for over 20 years, and has worked for a range of print and online titles in his career. He is enjoying getting to grips with cyber security, especially when it lets him talk about Lego.
Be the first to hear the latest developments in the cyber industry.
