Summary: Ivanti has issued security updates to mitigate multiple high-severity vulnerabilities in its Connect Secure, Policy Secure, and Cloud Services Application products. These vulnerabilities could be exploited by authenticated attackers, leading to arbitrary code execution on affected systems. Users are urged to apply the latest patches due to the increasing targeting of Ivanti products by malicious actors.
Affected: Ivanti Connect Secure, Ivanti Policy Secure, Ivanti Cloud Services Application
Keypoints:
- Multiple vulnerabilities with CVSS scores ranging from 9.1 to 9.9 have been identified.
- Improvements in security processes and collaboration with the security community have been implemented.
- Users are encouraged to promptly apply updates to prevent potential exploitation.
Source: https://thehackernews.com/2025/02/ivanti-patches-critical-flaws-in.html
Views: 5