SEARCH
Archive
Ivanti Rolls Out Patches For Exploited Connect Secure Flaws
Ivanti has rolled out its first round of patches for two existing - and two newly discovered - vulnerabilities in its Ivanti Connect Secure VPN and Ivanti Policy Secure appliances.
CISA Issues Emergency Directive For Ivanti Flaws, Warns of ‘Widespread Exploitation’
CISA said its new emergency directive for Ivanti zero-days is “based on widespread exploitation of vulnerabilities by multiple threat actors."
APT Group Targets Ivanti Flaws
An unidentified APT group is actively exploiting the two recently disclosed Ivanti Pulse Secure and Connect Secure vulnerabilities (CVE-2023-46805 and CVE-2024-21887).
Exploit Code Published for Ivanti Sentry Flaw
Researchers have published working exploit code for the Ivanti Sentry CVE-2023-38035 flaw.
Ivanti Warns of Actively Exploited Flaw in Sentry
Ivanti on Tuesday said it “has been informed that CVE-2023-38035 was exploited after exploiting CVE-2023-35078 and CVE-2023-35081.”