Description Preview
CVE-2024-21887 is a command injection vulnerability that exists in the web components of Ivanti Connect Secure (versions 9.x, 22.x) and Ivanti Policy Secure (versions 9.x, 22.x). This vulnerability allows an authenticated administrator to send specially crafted requests and execute arbitrary commands on the appliance. The vulnerability has a CVSS v3.0 base score of 9.1, indicating a critical severity. The vulnerability is exploitable over the network (AV:N) with low complexity (AC:L) and requires high privileges (PR:H). The impact of the vulnerability is high on confidentiality, integrity, and availability (C:H/I:H/A:H).
Overview
The vulnerability CVE-2024-21887 is a command injection vulnerability that exists in the web components of Ivanti Connect Secure and Ivanti Policy Secure. The affected versions are 9.1R18 and 22.6R2 for Ivanti Connect Secure and 9.1R18 and 22.6R1 for Ivanti Policy Secure. An authenticated administrator can exploit this vulnerability to execute arbitrary commands on the appliance.
Remediation
Users of the affected Ivanti products are advised to update to the latest versions that have patched this vulnerability. It is also recommended to limit the privileges of users and administrators to the minimum necessary and to monitor the network for any unusual activity.
References
Industry ExposureMost to leastThis section illustrates the prevalence of a specific Common Vulnerabilities and Exposures (CVE) across various industries based on customer reports. The ranking displays industries from the most to least affected by this particular vulnerability, offering valuable insight into where this CVE has been most frequently observed. This information can help organizations within these sectors prioritize their security efforts, understand their relative risk exposure compared to their peers, and focus remediation strategies where they are most needed. By understanding the industry-specific impact, organizations can make more informed decisions regarding patching, resource allocation, and overall risk management related to this CVE.
This section illustrates the prevalence of a specific Common Vulnerabilities and Exposures (CVE) across various industries based on customer reports. The ranking displays industries from the most to least affected by this particular vulnerability, offering valuable insight into where this CVE has been most frequently observed. This information can help organizations within these sectors prioritize their security efforts, understand their relative risk exposure compared to their peers, and focus remediation strategies where they are most needed. By understanding the industry-specific impact, organizations can make more informed decisions regarding patching, resource allocation, and overall risk management related to this CVE.
- Public AdministrationPublic Administration: Medium
- ManufacturingManufacturing: Low
- Health Care & Social AssistanceHealth Care & Social Assistance: Low
- Educational ServicesEducational Services: Low
- Transportation & WarehousingTransportation & Warehousing: Low
- Other Services (except Public Administration)Other Services (except Public Administration): Low
- Retail TradeRetail Trade: Low
- Arts, Entertainment & RecreationArts, Entertainment & Recreation: Low
- Finance and InsuranceFinance and Insurance: Low
- Management of Companies & EnterprisesManagement of Companies & Enterprises: Low
- ConstructionConstruction: Low
- Professional, Scientific, & Technical ServicesProfessional, Scientific, & Technical Services: Low
- Accommodation & Food ServicesAccommodation & Food Services: Low
- Administrative, Support, Waste Management & Remediation ServicesAdministrative, Support, Waste Management & Remediation Services: Low
- Agriculture, Forestry Fishing & HuntingAgriculture, Forestry Fishing & Hunting: Low
- InformationInformation: Low
- MiningMining: Low
- Real Estate Rental & LeasingReal Estate Rental & Leasing: Low
- UtilitiesUtilities: Low
- Wholesale TradeWholesale Trade: Low
